Static task
static1
Behavioral task
behavioral1
Sample
fc13f4f9bdec86fdfdd42b2f5a72a462_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
fc13f4f9bdec86fdfdd42b2f5a72a462_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
fc13f4f9bdec86fdfdd42b2f5a72a462_JaffaCakes118
-
Size
189KB
-
MD5
fc13f4f9bdec86fdfdd42b2f5a72a462
-
SHA1
55225fd6a0a120c299f69793c40f3e2ad6fe94fa
-
SHA256
0a1391cf87e8f88a0a8ee9d4d1be6dd35ec9b157489e06ad96cb9dba722bbc3f
-
SHA512
80485dcf0b7c54a1a49792aa94a9a463608d74ff02cbeb8aca05e406832dbc24d5f92c6117aecff4df0ae2c70156ecef712c4c1f5c2f430d047ac6d7f5bab537
-
SSDEEP
3072:r1L6eV8mi+O3UasbUHsKH7bHYVQ/ODCBO2yiHDNVHR/ohQUTwhQW:JL6m8gO31a7q7zYm/OSRH3HR0I
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fc13f4f9bdec86fdfdd42b2f5a72a462_JaffaCakes118
Files
-
fc13f4f9bdec86fdfdd42b2f5a72a462_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
nsp0 Size: 343B - Virtual size: 1004KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nsp1 Size: 188KB - Virtual size: 193KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE