Static task
static1
Behavioral task
behavioral1
Sample
11c327a787229d95f6968472dc9c6366_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
11c327a787229d95f6968472dc9c6366_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
11c327a787229d95f6968472dc9c6366_JaffaCakes118
-
Size
204KB
-
MD5
11c327a787229d95f6968472dc9c6366
-
SHA1
a9b029a39dbb24de0722a8dcd022447c0831b5e4
-
SHA256
b345761c05e8cbb0e9c8945354c6de4e4573686f96fa8b8050bbee94c9793ea2
-
SHA512
08f1af49efb3ec7b24dfe06ddee052ea107617f7c8f862733e5be9f2b3479d89e75edfa6b6900d6a55a712b62e87b650980dce9757f66fcdfa83719773eca7b1
-
SSDEEP
3072:OQ4JdbKg5wADPqBFYrlSorvcqP08clOkHtrqZMjSQ/JSb8SQg3cuLCjxrO8B:Or/bKg5LPqvYrl3PPLWLrG/QUk+cEOj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 11c327a787229d95f6968472dc9c6366_JaffaCakes118
Files
-
11c327a787229d95f6968472dc9c6366_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
peC Size: 200KB - Virtual size: 208KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE