Static task
static1
Behavioral task
behavioral1
Sample
ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118
-
Size
1.1MB
-
MD5
ff69fdf8aa607a9ae7542d2a1b921731
-
SHA1
86e4c1dd56889d9d651a5b82c13f6ad954731ef7
-
SHA256
cd9a55f2ec7757d3a275e691053bb817c71ef9a8d71f07784399dd7183fe73b2
-
SHA512
efebe980bd7abedbd956ac97afa45151f931a9116ab33950eeb51b425cc601e05c20241f61f7d41193440eec5e42818b7c23fb90d832a8d3d3cb9619ae99b8e5
-
SSDEEP
24576:FN2g6JX7ImoznkSXntnPyQ0sVcMsJYZWRYAfyqYa2jciId37Wd:T2NX7bo9Xn56FicOZWRYAaqYMd3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118
Files
-
ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 1021KB - Virtual size: 1020KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 1KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 3KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 56KB - Virtual size: 55KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 17KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ