Static task
static1
Behavioral task
behavioral1
Sample
eddfc5c0d54df839168961eca8eac04b_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
eddfc5c0d54df839168961eca8eac04b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
eddfc5c0d54df839168961eca8eac04b_JaffaCakes118
-
Size
766KB
-
MD5
eddfc5c0d54df839168961eca8eac04b
-
SHA1
a9e4cf4442241da6cfe70c64a396dabcdb365aef
-
SHA256
86cdc28aa7b220cdf21710c3be636e7cb5f1dbb57b9dd27048113a02883ef9c8
-
SHA512
5711a3b2ef519a562b930560a697e667301389644f3f7b308eefa827a54b0daeb5525c3290547f3092cbabbadcd294ee721100b64007ac9aa2e44bcf9e30f760
-
SSDEEP
12288:kOLVE2/mYsY0GxRh7pHqKju+hltPxCT6fzBdEENo8RTzqN6W05N5wCauEii1B2jJ:ksVE2/mYsmJ7pKKyeltPxC+fzor8RTzt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource eddfc5c0d54df839168961eca8eac04b_JaffaCakes118
Files
-
eddfc5c0d54df839168961eca8eac04b_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
$Y~| Size: 538KB - Virtual size: 538KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 222KB - Virtual size: 221KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ