Static task
static1
Behavioral task
behavioral1
Sample
0c5e9c4fada0e7e955ffa562f83defd0_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
0c5e9c4fada0e7e955ffa562f83defd0_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
0c5e9c4fada0e7e955ffa562f83defd0_JaffaCakes118
-
Size
231KB
-
MD5
0c5e9c4fada0e7e955ffa562f83defd0
-
SHA1
caace772759a6ebf854123e33e620cf45bafc9e3
-
SHA256
ce79c3e77e4938a85d7520dcc193099111a81a6d2736205c65d23ab14d370156
-
SHA512
807e33729e644e709c8940b9fc5d1333a41670436b3f3b54e383629c8bbd21a906bee6d55ac2023cfa9faa9043a82c0f0c81bf6b3e2b10ada91f5f27faaa5053
-
SSDEEP
3072:ECihEfz3ZU/DGG3yF4T3UxZLCzJo8f1tqKL3gjajVihQ92EbvVR6:xiyz3ZUL3XT3UjLxApNjVihyVbvVR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0c5e9c4fada0e7e955ffa562f83defd0_JaffaCakes118
Files
-
0c5e9c4fada0e7e955ffa562f83defd0_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.data Size: 123KB - Virtual size: 764KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 1024B - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 33KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE