Static task
static1
Behavioral task
behavioral1
Sample
de117656ef0cd3cccb59205dc34ddac9_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
de117656ef0cd3cccb59205dc34ddac9_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
de117656ef0cd3cccb59205dc34ddac9_JaffaCakes118
-
Size
772KB
-
MD5
de117656ef0cd3cccb59205dc34ddac9
-
SHA1
da51230f3d06393102b86cfb40075945088cf977
-
SHA256
5c2b6683def6c31465baecacad5dec2549554d6e9b3bc9c42ae5467cf2c61b6b
-
SHA512
49aa9687cf5ebfb1c97c902dfedbafbe67b37efbc9da78521d894b3342e9917eaccf96291a835f256de9c01bf6cdfb912f89ea4914322eba2083f490b605d95b
-
SSDEEP
12288:KHoDwCN73rBW3BplqWzCB4nSrrKjDVagfgMQB6WyYmNs56B++fmEwbT6u:KIzbr2qWzCBA9agabmNl+vbT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource de117656ef0cd3cccb59205dc34ddac9_JaffaCakes118
Files
-
de117656ef0cd3cccb59205dc34ddac9_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 756KB - Virtual size: 753KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ