Static task
static1
Behavioral task
behavioral1
Sample
dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118
-
Size
328KB
-
MD5
dc05a7149384b3ff429e634b0d76e6eb
-
SHA1
046d1edff41b90c64a2858eaa035b3dfb50f209a
-
SHA256
8885b9fb03d08b88d8bb28086a2cc40cb11b64b027d7cb7ba4e513d01fc4ca4f
-
SHA512
b4bddae47c4653bdfa5e7633d8726ddf8d9652be649c1294492a9c6cf794dd8ee30b670d819b415bb155763d4d4ad223fb611e90a38494bdaf80e482bf242f94
-
SSDEEP
6144:w0/Q5j0f1eTzDX7X17OOyzL6aAxrPUiAHGCQT4Ov/oVO3nZ94TkrZ8P:wq594zDrZTCL6aajAx7VO3ZeT+m
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118
Files
-
dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118.exe windows:4 windows x86 arch:x86
bd51a645a9c68bd03b2e51586e5cbdcb
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
LoadLibraryA
Sections
�4F Size: 280KB - Virtual size: 776KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
�R*_m Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
z� Size: 512B - Virtual size: 4KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
K�^�T Size: 46KB - Virtual size: 48KB
IMAGE_SCN_MEM_READ