Static task
static1
Behavioral task
behavioral1
Sample
fb120cbb3faa63d2b9a0e9d9989f3447_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
fb120cbb3faa63d2b9a0e9d9989f3447_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
fb120cbb3faa63d2b9a0e9d9989f3447_JaffaCakes118
-
Size
56KB
-
MD5
fb120cbb3faa63d2b9a0e9d9989f3447
-
SHA1
9ca26583e4ccc97743b1c84928b29aa08b489df3
-
SHA256
c26736db2ef46d8f65b9cc0f43e5d6f59c725188f7aa12c7d352d405fbc8f3d4
-
SHA512
1dd4c65eccd07b17afcaef556e4c89b725f6d37c735db02aca26c4a81f70632bb777ad225c2b1edaf1b8b25166b61e77c1cdf25782ef7a7e57cae801ac3111ca
-
SSDEEP
768:YKf2oQyjrjgzJqJF7dw57WSqOGsmyX3/bNCj1m0u1wFD/6IkKhuPZ3/TgRRdP1z2:T2oQ+jgdqJhS5GslUY0uqD4PYdP1zPO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fb120cbb3faa63d2b9a0e9d9989f3447_JaffaCakes118
Files
-
fb120cbb3faa63d2b9a0e9d9989f3447_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.text Size: 357KB - Virtual size: 884KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 26KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE