Static task
static1
Behavioral task
behavioral1
Sample
0423f63a97e4f44321b192b2e8c82c63_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
0423f63a97e4f44321b192b2e8c82c63_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
0423f63a97e4f44321b192b2e8c82c63_JaffaCakes118
-
Size
184KB
-
MD5
0423f63a97e4f44321b192b2e8c82c63
-
SHA1
9716a2bc849ad3e7b429463b35db7dbe3701d4d3
-
SHA256
a6a87a01f64fa01cc86801528feb84e10ef5bd5f95f93e8517f68471336c30d2
-
SHA512
edca70375ed0463d25bbf34043f921594b54e786d29fbd964595854fd168ab6d6b5277a057a29d9c17a845333ee31305f46ced908550c7f2ac26fb2225c75dfd
-
SSDEEP
3072:ukfkXP5KTx+KJDvTcNE/NgyJnDIBetryV102rYihsq:ukMkAKdvTDgyD0O0Yihs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0423f63a97e4f44321b192b2e8c82c63_JaffaCakes118
Files
-
0423f63a97e4f44321b192b2e8c82c63_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 129KB - Virtual size: 2.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE