Static task
static1
Behavioral task
behavioral1
Sample
fc1b4495cd1276a293c69aa7993d1405_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
fc1b4495cd1276a293c69aa7993d1405_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
fc1b4495cd1276a293c69aa7993d1405_JaffaCakes118
-
Size
77KB
-
MD5
fc1b4495cd1276a293c69aa7993d1405
-
SHA1
ee375c57ee8d2095958e35f06cb8247c28503e18
-
SHA256
fd2dc317fe5168dc3e075f75b2f99efd21c89019025a7abbcf85ddb9e4877d68
-
SHA512
3520126e44ecd409e0c062b0c69b6326acdf036f3cb1a6a6f1e68ac720b238a462c05f32edc0a45173501f113177a5b2e81b892c5ebeaa8e1e81d291174a7f8c
-
SSDEEP
768:fNQXbrgWrFiwXfC0+afJroNQDA+KzyFHTITCNdo9BahYnTzY:fNYb8WZiOCohroNB+IyPNdo9BTTs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fc1b4495cd1276a293c69aa7993d1405_JaffaCakes118
Files
-
fc1b4495cd1276a293c69aa7993d1405_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
VxV0 Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
VxV1 Size: 27KB - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.newIID Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE