Static task
static1
Behavioral task
behavioral1
Sample
faf44db8a0e76a2bdd222e8c504b38c3_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
faf44db8a0e76a2bdd222e8c504b38c3_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
faf44db8a0e76a2bdd222e8c504b38c3_JaffaCakes118
-
Size
19KB
-
MD5
faf44db8a0e76a2bdd222e8c504b38c3
-
SHA1
a84232832853d19a461afc061347c8d2ac1bbd7a
-
SHA256
49b8a2eb22f04d5389c9decd0f207cee39075fa1303e444784c8d59a04da1efd
-
SHA512
278f1b51283a238e917174926778e9c0b5765ce922cc899ac2a1880293da439381aa683aef296498dd4ffc7bbf757316eff7c10f46a66596234a247be3a44feb
-
SSDEEP
384:WxGvY2vDd3CZu/q2CqrgtC4/2u9vXZ32wsw:WYvY280q2Rrgtb/JFYw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource faf44db8a0e76a2bdd222e8c504b38c3_JaffaCakes118
Files
-
faf44db8a0e76a2bdd222e8c504b38c3_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
Size: - Virtual size: 540KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 179KB - Virtual size: 180KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE