Static task
static1
Behavioral task
behavioral1
Sample
128950b22dab90735dbe7ef390e48f10_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
128950b22dab90735dbe7ef390e48f10_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
128950b22dab90735dbe7ef390e48f10_JaffaCakes118
-
Size
34KB
-
MD5
128950b22dab90735dbe7ef390e48f10
-
SHA1
02370ac580e3d0411ca0d4d580633049c68e0a7e
-
SHA256
1d4f92f5731ca3a3cc57ee49558ff8419f63ad6c42922119e1565ddc37af8a6a
-
SHA512
367c0de850c9d2588128bd2fd821d0124dafd607ddfd51f09abf45bc936083735fbb34fcfef4c4a11aeab175630e73b22e5504fbab173a851088cfaf19daf16d
-
SSDEEP
768:AxTazVvtX5dC8UeN4IU9cPYqibCA3OQ60+V1JivPpyMma1M:ARSi2BrPYDCA3OQj+V1Qn4NoM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 128950b22dab90735dbe7ef390e48f10_JaffaCakes118
Files
-
128950b22dab90735dbe7ef390e48f10_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 26KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.pdata Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE