Static task
static1
Behavioral task
behavioral1
Sample
01474e7aee2aede4d975034d2511b428_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
01474e7aee2aede4d975034d2511b428_JaffaCakes118.exe
Resource
win10v2004-20240910-en
General
-
Target
01474e7aee2aede4d975034d2511b428_JaffaCakes118
-
Size
64KB
-
MD5
01474e7aee2aede4d975034d2511b428
-
SHA1
dc3a982aa21889056662481bd1f9e68da9262069
-
SHA256
dadc7754e07cb09c5ff3689d61b4bf09f211ce96b4734690de7d78fde7c8532b
-
SHA512
88c1904c01dbd55c1574e2ed9cb1e319b566f35e483571c1b385c037bbb0a211218aac59108df2b6214738371cc58f5342030dfbf43ff71018ed57ec4ba184a5
-
SSDEEP
1536:/uozZad4r8KF9QroTLfIJUXwxDhSsoU3j5RH9j/TYKbboSJB6QIUAhvw:/RauQpUnwphS63j5Rdj/o2jAm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 01474e7aee2aede4d975034d2511b428_JaffaCakes118
Files
-
01474e7aee2aede4d975034d2511b428_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.keyxbbv Size: 57KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.atttedc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.RPCrypt Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE