Static task
static1
Behavioral task
behavioral1
Sample
1709b0a3a68ae250d809d4379eba8969_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
1709b0a3a68ae250d809d4379eba8969_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
1709b0a3a68ae250d809d4379eba8969_JaffaCakes118
-
Size
930KB
-
MD5
1709b0a3a68ae250d809d4379eba8969
-
SHA1
2c49d6a79b5de13962187084676be36c8bfadc6a
-
SHA256
b7e7021790d70de80e07813a59cf400fb81cbf468eda0d9824304e5f52e665c6
-
SHA512
ff5494d115837d3c3012819262a30da1c7f93164d1c114c95be5caaf687a19dc28b70db8e3224f62974b5457f6c74c74fad72b5ffc17c94072945a3fbedcf666
-
SSDEEP
12288:dQT0Owh0PbbxC8s75cWYIMHtbu4yBywQjbWzbi0309VYp9jBcll7JZ19H13:uoeUT2V3ifKWKoVWF7x3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1709b0a3a68ae250d809d4379eba8969_JaffaCakes118
Files
-
1709b0a3a68ae250d809d4379eba8969_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 55KB - Virtual size: 54KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 22KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 33B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 85KB - Virtual size: 85KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 220KB - Virtual size: 220KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ