Static task
static1
Behavioral task
behavioral1
Sample
36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118
-
Size
418KB
-
MD5
36ab8a9c16ced97d12b5b75293b4badf
-
SHA1
e68d169da5d8c8c2849c23a2f049b1efdbc188bb
-
SHA256
e9d2b4ecf08f4c8c1d487b11ad7ebbb40ecd74d2239964825d98128fab1522ae
-
SHA512
4ab08ca61399dfae99a26e23cff093ed490b012cc6e25e382583c33ccf72457be626fe0c83d2aaa613466f68fe9b6cb755d498f369842c0576f1436dcff0bb2f
-
SSDEEP
6144:D8cQrHB7EYry1xvBMILvA9d8JjYQbGVjCqpMaggeOxgb:D8HHBEb2ko9+YQSbw1Ou
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118
Files
-
36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 267KB - Virtual size: 266KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 150KB - Virtual size: 150KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ