Static task
static1
Behavioral task
behavioral1
Sample
ef8c7c2bfee653e278e7ed4797f215db_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
ef8c7c2bfee653e278e7ed4797f215db_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
ef8c7c2bfee653e278e7ed4797f215db_JaffaCakes118
-
Size
448KB
-
MD5
ef8c7c2bfee653e278e7ed4797f215db
-
SHA1
9a643cfb39a13d6aec2cfe69e6ebad117d1215f2
-
SHA256
1781bc3ba56e861ab5478922d0dc6f0cf9b440d9ae2528cae9833142d238dfd6
-
SHA512
72770ae859d5d3e4a2beaa5c2aac341270b8bf0ae889ac4a0ca68ffa365ada891abcb3722b31dd37ef7d63672a9cadc68e01466b073013f8f1dda3675c7f80c5
-
SSDEEP
6144:xRfcLMVKhWr7HhBvHSnSj0Bdu8vS6UOiVJoHYLN5jCGMGmlOzEej2vaLop3cE6P1:xmUKhI7HhBQvWHNCGMGmsIeBY3OkNE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ef8c7c2bfee653e278e7ed4797f215db_JaffaCakes118
Files
-
ef8c7c2bfee653e278e7ed4797f215db_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 304KB - Virtual size: 303KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 71KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 10KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 58KB - Virtual size: 58KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ