Static task
static1
Behavioral task
behavioral1
Sample
f423cccffd35959daa3002c39d844710_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f423cccffd35959daa3002c39d844710_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
f423cccffd35959daa3002c39d844710_JaffaCakes118
-
Size
883KB
-
MD5
f423cccffd35959daa3002c39d844710
-
SHA1
9bbb9d44d28ce430f0ebc56f7fe999329e5bcd03
-
SHA256
d81ea31e2c38a63dc3878fa6cb1098d6969775b70a4c64d6234c6bb4b1019154
-
SHA512
538337218d0081cc6bb269b985893ea75642263c13abb6b5ee02655931b3592a2833495b445debf19f4f6c4629a778b75ee8b2790aeab3f30845c63feb80d53d
-
SSDEEP
12288:+RuGbPyA++rrpQ+L/lM9Ne6vih8LEKeio2nEcN1qmwu2onhCg889BI2:Auc/RrlQ+5M9Ne6vin3CEcjAonhX7BI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource f423cccffd35959daa3002c39d844710_JaffaCakes118
Files
-
f423cccffd35959daa3002c39d844710_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
vn5Q8,- Size: 38KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 775KB - Virtual size: 775KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ