Static task
static1
Behavioral task
behavioral1
Sample
2b91956f6a138482bc9ffa3d5dfa479b_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2b91956f6a138482bc9ffa3d5dfa479b_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
2b91956f6a138482bc9ffa3d5dfa479b_JaffaCakes118
-
Size
18KB
-
MD5
2b91956f6a138482bc9ffa3d5dfa479b
-
SHA1
f3dbe7635f7f55c3657bd8aed6cf5d280b82dbbf
-
SHA256
b9f836399dee93c330c0dcd8dabec82c128a9138aeab7fecf651893cb1f4f7b3
-
SHA512
a26effd3a3d55591b33ce543c72a337d79de788deafea2c85d21376f11130c663cb4527378a78ebc742b2c037381efa550a0aca339b760e33fc5a1e8bff431c9
-
SSDEEP
384:ANKzO+lIFpQjFvDuIfxTqimAiRvvPGEfnheowynzta/6Z/MwUixyzDI4OSSIu:AYZIsjFruIcxAavWEfoowys4/MdEyzDi
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2b91956f6a138482bc9ffa3d5dfa479b_JaffaCakes118
Files
-
2b91956f6a138482bc9ffa3d5dfa479b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 25KB - Virtual size: 25KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 290KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ndata Size: - Virtual size: 1.4MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ