Static task
static1
Behavioral task
behavioral1
Sample
ebcb3df9f71bfd931127f88e2251cc92_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ebcb3df9f71bfd931127f88e2251cc92_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
ebcb3df9f71bfd931127f88e2251cc92_JaffaCakes118
-
Size
285KB
-
MD5
ebcb3df9f71bfd931127f88e2251cc92
-
SHA1
134f2f8ff327a01646269bd6432b38a7e569bdff
-
SHA256
d876409fc72fea16156548ae5df295aa359038ad5633b2fc3fa239a87e562cd7
-
SHA512
b5984c0741dabb3ae03f8c093bfd186193172a292ad780c069c76fbdea13f366d0041825c6854446911b5923f4866bb81b607dd4b8ea7275965bbd9aebca6c23
-
SSDEEP
384:ekeycy2SRGlfmfVDMrDRCeNdE9XqvTW6OA0Rhcyh903KaxjzY1g2yZH4iEgu:eRyKkGlfmNgaLJ39RaxjzYjGrI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ebcb3df9f71bfd931127f88e2251cc92_JaffaCakes118
Files
-
ebcb3df9f71bfd931127f88e2251cc92_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 268KB - Virtual size: 268KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.Pav Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE