Static task
static1
Behavioral task
behavioral1
Sample
dbfbeeeea316cbd591082b197f802891_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
dbfbeeeea316cbd591082b197f802891_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
dbfbeeeea316cbd591082b197f802891_JaffaCakes118
-
Size
323KB
-
MD5
dbfbeeeea316cbd591082b197f802891
-
SHA1
a982663ad24edd2e4f8a08d5af2d9a11fa516f12
-
SHA256
9bbc029c3312b0f27bc80738041c286d3ca91a256ad12104f2560aa5d6fb6a3d
-
SHA512
46c8d8d9c97ddbc3098157c34109372f6bd29043d515284e61e64ebd1fe5afdde124977f0d10c51fdf282a15b3dd959312fb6df41c38e0c763d706d9260ecbf9
-
SSDEEP
6144:BTZZs2PbjZjZt5zii8QLGPpnAiNnnh4e5DXZGm7rrpQaIgflnoSsDQf6:B9Zs2Tj/0QLunvnn1tXFQaIonzzf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dbfbeeeea316cbd591082b197f802891_JaffaCakes118
Files
-
dbfbeeeea316cbd591082b197f802891_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.Upack Size: - Virtual size: 1004KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 322KB - Virtual size: 352KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE