Static task
static1
Behavioral task
behavioral1
Sample
f67e43a16405933ca048df777fcf7836_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f67e43a16405933ca048df777fcf7836_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
f67e43a16405933ca048df777fcf7836_JaffaCakes118
-
Size
2KB
-
MD5
f67e43a16405933ca048df777fcf7836
-
SHA1
04d28e66d7983c62e2a2922e8e45bd77259425b4
-
SHA256
49698ceea517f419016b4711ef559e34752c96d9b0f777b0541e7b1970d20c26
-
SHA512
b301a669a305878a75604e2ec2882286fd2bc9abbb282d1ee0cbdf3571f69667c64f1612e83b3a45c1e488138a381a116fad3e936e3b47932a89fe9c3e74fb0a
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f67e43a16405933ca048df777fcf7836_JaffaCakes118
Files
-
f67e43a16405933ca048df777fcf7836_JaffaCakes118.exe windows:4 windows x86 arch:x86
fe9a64d11c22b83d2aebb6b8a4552914
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
ord595
__vbaExceptHandler
ProcCallEngine
ord100
Sections
.text Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ