Static task
static1
Behavioral task
behavioral1
Sample
f9ac0e2dc6442e57230d43cb1a5e03db_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f9ac0e2dc6442e57230d43cb1a5e03db_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
f9ac0e2dc6442e57230d43cb1a5e03db_JaffaCakes118
-
Size
117KB
-
MD5
f9ac0e2dc6442e57230d43cb1a5e03db
-
SHA1
0cca19f17cb2000825ac47e2eacf758112bc5886
-
SHA256
8b194f68e30001f23e095156da261ad62afbef92574ffd8faaa43e783725f3d3
-
SHA512
c67e3005d02f50e347157aa743c3ce9e4a2cffe1f7576971a49b45aeefdd406d032dc4c5584cfe54f63941e483ed36e8c3e20c5f0c28c9f2233aacf7bca4eb36
-
SSDEEP
3072:ezoGL4L4Z9e19q3/qBSVP3n5PlOLm9aowed94/Z:ww4Z9ebqvwk/5PlOLAYZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f9ac0e2dc6442e57230d43cb1a5e03db_JaffaCakes118
Files
-
f9ac0e2dc6442e57230d43cb1a5e03db_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
4h72 Size: - Virtual size: 208KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
kjnl8u7k Size: 116KB - Virtual size: 116KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
4a2ldxue Size: 688B - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE