Static task
static1
Behavioral task
behavioral1
Sample
1060da90a5047d0a9c5457b0a35ad8f8_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
1060da90a5047d0a9c5457b0a35ad8f8_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
1060da90a5047d0a9c5457b0a35ad8f8_JaffaCakes118
-
Size
19KB
-
MD5
1060da90a5047d0a9c5457b0a35ad8f8
-
SHA1
96b77967a350a1f0e97f677123ef9e2da606ce65
-
SHA256
c187705946ce775c7cb85920edc95129b89de6e8eb0ba2c5ab137451c60016b3
-
SHA512
86080788824f1d1c66927b6907200a171e9dbd1e7464d4658214987354f1bdc6b245b2c98b90e63a920578aaf82287c27cdc824d24c110062f260bb57d08d8cc
-
SSDEEP
384:aSIJkALTgIqrQKIwKYmLK60mQGoW32SFcZQezZW5sqovxGPY4OFOHkRR2fv4:6J5LTgXQJwKFK1vW3zcZ1W6aYlxRRd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1060da90a5047d0a9c5457b0a35ad8f8_JaffaCakes118
Files
-
1060da90a5047d0a9c5457b0a35ad8f8_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.Upack Size: - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE