Static task
static1
Behavioral task
behavioral1
Sample
293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118
-
Size
645KB
-
MD5
293503ad2e89e26b3637a2485b22b6a6
-
SHA1
d438b24f324ac698365fe3a68187e0751202e93b
-
SHA256
224568671210ab7a52f24a11aa7f45158a97a028549ab474072d10f1a5adb1f3
-
SHA512
99c6457ded8cbc23bf99b42b4adb20746c537b09bc9d665b02d3c9f02a88ea3c6caf1c65656664ad25515106cb59b0ccb34955c9821a0da6458a575c26a6708c
-
SSDEEP
12288:FA8L4ePK5NNFK3jAg8Jplr0uQLfN/F3Z4mxxmdA42myKuae:FxsjKU+/QmXZn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118
Files
-
293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: - Virtual size: 340KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 329KB - Virtual size: 336KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 314KB - Virtual size: 316KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE