Static task
static1
Behavioral task
behavioral1
Sample
de18dd148184651dbbf97c0c7fb60067_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
de18dd148184651dbbf97c0c7fb60067_JaffaCakes118
-
Size
395KB
-
MD5
de18dd148184651dbbf97c0c7fb60067
-
SHA1
7d4550cd6a762920f3a8ce750bde297a465d65c4
-
SHA256
ba3f407f558bcb078637e4b02365ea23b8c8dcafe7d03a0b0503f10e48df570b
-
SHA512
14237d9445810d8ebadf373683eb2f38718de0771b89ef270266df5ecb2206ecaa503af9c0b984299f471364a9291ccaa39775ef9269037fb261b28a9cb8a322
-
SSDEEP
6144:M5HshYRiIR1B3Cg9yAPVZBm3Efq0zn8mxPKte6LOP0U9xwLS7mOXZlLyo:VhiRr339JPVZBmE9Pj6pu7LZlWo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource de18dd148184651dbbf97c0c7fb60067_JaffaCakes118
Files
-
de18dd148184651dbbf97c0c7fb60067_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 13KB - Virtual size: 288KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 376KB - Virtual size: 908KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE