Static task
static1
Behavioral task
behavioral1
Sample
1306fabf0a16d33f5cdcef5d28e98678_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
1306fabf0a16d33f5cdcef5d28e98678_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
1306fabf0a16d33f5cdcef5d28e98678_JaffaCakes118
-
Size
169KB
-
MD5
1306fabf0a16d33f5cdcef5d28e98678
-
SHA1
b3a1a93f7ba505b49494c8ac3fb0142b6fda70aa
-
SHA256
9af08ac54383098198b08c9011a3f2cd4af7ef4c98e98a7e8ee2b41afb38a242
-
SHA512
003b746f5c3cdc28d139c925302f6fb81e4847672ba1e05ff570599eb31376910a79ca59e38614ebadeb47d99ce6c3eb5422647ca611c877b6be4c50199ab1a4
-
SSDEEP
3072:W/xjwMP2bugOQg5k3uqGOBPNEYDrV0QPnQXy/teMSC16JKQYYyHep1jGErkfT:KxjBObOQg6/BPNEYaUnQXyUhI6jYPMGv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1306fabf0a16d33f5cdcef5d28e98678_JaffaCakes118
Files
-
1306fabf0a16d33f5cdcef5d28e98678_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
TDjl Size: - Virtual size: 476KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TDjl Size: 98KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.aspack Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE