Static task
static1
Behavioral task
behavioral1
Sample
f6b8a5c35d0934499f782137dcde70e0_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f6b8a5c35d0934499f782137dcde70e0_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
f6b8a5c35d0934499f782137dcde70e0_JaffaCakes118
-
Size
532KB
-
MD5
f6b8a5c35d0934499f782137dcde70e0
-
SHA1
2da1142e6c9ec884c98b4058da1c1a34fafbb4b9
-
SHA256
989b90f5e53a823f374b8b94ba3f1263edcef08dbb6e8f6c39657c5446f869bb
-
SHA512
bd3298e5fc0f9bde33e8aae6b4fcaf845dccf631b90cb8c62078162b4c8f19378e0748db31aaf20020a901d511c699461ae880c07453782b84fb6e11ed7b9ca9
-
SSDEEP
6144:PetpaH6ldsAXB/Wee//t4n+PZSiTdUHn4Nx2DRP3705nhhHHNav7/:2tpaH6lS4/WptjZVT6Qx2df705hhHHib
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f6b8a5c35d0934499f782137dcde70e0_JaffaCakes118
Files
-
f6b8a5c35d0934499f782137dcde70e0_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 240KB - Virtual size: 239KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 284KB - Virtual size: 283KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ