Static task
static1
Behavioral task
behavioral1
Sample
e29b39335668109ee4c21dee344e7440_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
e29b39335668109ee4c21dee344e7440_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
e29b39335668109ee4c21dee344e7440_JaffaCakes118
-
Size
372KB
-
MD5
e29b39335668109ee4c21dee344e7440
-
SHA1
35cb6f0ba4ceb2190448c00e65add5d360ac90aa
-
SHA256
e224cad667100ff7a9e844daa26754e8868559e322180bb5e5af8a092a110593
-
SHA512
57288c2412bd0f58d2838edc08b1167a435e6a15d1e3600a1cb92e0a002159fde58dcb3d8647f54693126b0eef3476e7d3a3c5cc0d6fe979a90c855c0cdd4ed9
-
SSDEEP
6144:p9NtPjdTlDNKMdUjR7YYuRz7BJHedbE3A6x5YLfsWBjs7ikWRNhZWe48mL395Res:NtPBPdUNnoH2bE3A6x5KxkGYvdd05E7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e29b39335668109ee4c21dee344e7440_JaffaCakes118
Files
-
e29b39335668109ee4c21dee344e7440_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.4VslX Size: 172KB - Virtual size: 172KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 153KB - Virtual size: 153KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ