Static task
static1
Behavioral task
behavioral1
Sample
fd7cd0958d68a67f5bc1975fd7c62491_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
fd7cd0958d68a67f5bc1975fd7c62491_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
fd7cd0958d68a67f5bc1975fd7c62491_JaffaCakes118
-
Size
50KB
-
MD5
fd7cd0958d68a67f5bc1975fd7c62491
-
SHA1
ab1cca74a3507a2f978248fa505bcbd00c00b8a9
-
SHA256
af43548f7f9fb197a7d76e7e9cb774696dd4604ebbdebd790109f28181d3fc5b
-
SHA512
47abe90db1bf4bcd7edc58f6f11348458de137c9d15a5572761b7aeed4c474f4311342db4390b0fecbe706d5f5d958a5cbb73a28f0185d4560131155271fe717
-
SSDEEP
1536:WRbeAuYRZDKmlobgMz2G3XprkETUHbN6mN9OmzN+WDgg:cKAuYRZDKml072GHFkETUHbPDZzN+WDz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fd7cd0958d68a67f5bc1975fd7c62491_JaffaCakes118
Files
-
fd7cd0958d68a67f5bc1975fd7c62491_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
CODE Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 104KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE