Static task
static1
Behavioral task
behavioral1
Sample
281bc4ff4ff7d08d613bea35e7c0f02f_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
281bc4ff4ff7d08d613bea35e7c0f02f_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
281bc4ff4ff7d08d613bea35e7c0f02f_JaffaCakes118
-
Size
16KB
-
MD5
281bc4ff4ff7d08d613bea35e7c0f02f
-
SHA1
7cf7d778f7432b09fd9fafbd86569b8592b30fb6
-
SHA256
6d2ccc109c10ec90343b404b0e8a4243ed2deb3e81d3fa6a33d896ae420c869c
-
SHA512
da3ab66960e172374f4726c2df05753d40939f128380a30ee827ab09f855a9df550f48642c640c73bd4fda472bd09fda4fbd2ea4346034436baa1649f324a5ea
-
SSDEEP
384:Cp/0awJLNEUc4jZIGZr7G8PvmBdf+ewnGeJdCa1RUaEF9Sn:Cp/wJxEUF1r7BPS+RnGerHUaEF9Sn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 281bc4ff4ff7d08d613bea35e7c0f02f_JaffaCakes118
Files
-
281bc4ff4ff7d08d613bea35e7c0f02f_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 186KB - Virtual size: 780KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 10KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE