Static task
static1
Behavioral task
behavioral1
Sample
eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118
-
Size
11KB
-
MD5
eb5f5fce16fc9a9195067b2eb33858fb
-
SHA1
569f98a1404e5ceb7c3607c3a5092177bd93b296
-
SHA256
9fd7aaec19e3325015989f7b28b5e07f4d5cd49d2701557567cc238a6ec18c87
-
SHA512
8676f89a54a9d8d3d6cc6e957071000f7065fd393a5bfbaa0281b5f7760542ec5f1606ff16193ea4abffbb6e6c05ef6ca3e213a5e4eddb822bc41f445c0d17bc
-
SSDEEP
192:aCb86CIBaSRyIr4l8rI2/hbF1CiXykPq4O0EntEP:aCbAI/RPNf5FYiikmLntEP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118
Files
-
eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118.exe windows:4 windows x86 arch:x86
87bed5a7cba00c7e1f4015f1bdae2183
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
Sections
.text Size: 512B - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 416B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE