Static task
static1
Behavioral task
behavioral1
Sample
fa67e15febe2325006de025ca312e0d9_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
fa67e15febe2325006de025ca312e0d9_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
fa67e15febe2325006de025ca312e0d9_JaffaCakes118
-
Size
148KB
-
MD5
fa67e15febe2325006de025ca312e0d9
-
SHA1
34d681b874c093d122e7d9e4325b133289a22998
-
SHA256
f7fcc5a33fa68b0e6b6df81a22b7d20f6af08b27d799631eef7085488d7cc730
-
SHA512
2cb1c71ca34284b00b13cd16a341c22c61be48563328fd6d2fa159b73d07fdd327e4bbd9a46d09472ddbdefc30b49de57e61dcdd217f5a07fdb01c2ead8aba37
-
SSDEEP
3072:SUHHD+WuMBspr8+k77/pswWR/x0+dv4TLxyK4m:9SWuMBsFvS04+dv4TV5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fa67e15febe2325006de025ca312e0d9_JaffaCakes118
Files
-
fa67e15febe2325006de025ca312e0d9_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 116KB - Virtual size: 115KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 24KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ