Static task
static1
Behavioral task
behavioral1
Sample
de3996b1b7f2e27d59b25ba19c75f109_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
de3996b1b7f2e27d59b25ba19c75f109_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
de3996b1b7f2e27d59b25ba19c75f109_JaffaCakes118
-
Size
73KB
-
MD5
de3996b1b7f2e27d59b25ba19c75f109
-
SHA1
1c4256f1c3545e6dc2a3bf41abcf9a6f02f91894
-
SHA256
07ed956efddf08d26356137772378f37b0c1e80a9496d3666c8b26ab52af8952
-
SHA512
8089b024503edd3e4ed5dd83554269b713f8409cb862b36a256b35f18b9f03296f59ddeefc03e5988d9a503affc1655decbba5b0344996f9fcc7d950a2d656a8
-
SSDEEP
1536:u623wn9D+GEtc6ygPuxwujJcLu0QQ5uvJ5jCLPZl0z:u6nn9CRCfEuSujL8uvJkf0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource de3996b1b7f2e27d59b25ba19c75f109_JaffaCakes118
Files
-
de3996b1b7f2e27d59b25ba19c75f109_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
Size: - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 71KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DIY Size: 100B - Virtual size: 100B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE