Static task
static1
Behavioral task
behavioral1
Sample
dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118
-
Size
2.2MB
-
MD5
dfa32a781813e18fadd31f5c7afa0fa9
-
SHA1
f91675493f1eb39f0474a718187990fdc15f7734
-
SHA256
04bd04fe79445e08b5c06b880f30592737f24fa7c5bcd0d1b165739231e8adf2
-
SHA512
219ab78a4a7e556b3037e7db370d60a4e28ce68a25489a6f2b3bf79cba1bd9eda2cd8c23004e37d4ab8af9c11163dc481272486bb30c0db9f2530e532e7e847f
-
SSDEEP
49152:7+HFTJ+eNUaZvvHX4NZ/5Pjdvb+HB9yKEgGUGGU1:7+lTtNdv3eZ/5Phz+HnFEvB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118
Files
-
dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.TEXT Size: 208KB - Virtual size: 208KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.DATA Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.RSRC Size: 9.0MB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.Leem Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE