Static task
static1
Behavioral task
behavioral1
Sample
39b4b670c9cc0554f7bfe97dc07f6a06_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
39b4b670c9cc0554f7bfe97dc07f6a06_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
39b4b670c9cc0554f7bfe97dc07f6a06_JaffaCakes118
-
Size
962KB
-
MD5
39b4b670c9cc0554f7bfe97dc07f6a06
-
SHA1
99b4c335203d7d0ae83c698c9f24eeb2a749b396
-
SHA256
a4616fd83dc098092f0f116a69c68d30654ee522ba8ae4d0d1a43993694b3e3d
-
SHA512
15455ae06f0e7137a65b94cd43df19d2f8c7589d41d8339c8fb507894fd015f4c138df277c0fa711956f96e58c9eb9010500db55c15a3286e1a41b72ac27ce87
-
SSDEEP
24576:qWa/I7aIvuibrypeRuzUjWlqKaDlumrLOxMSE5pr0B:pP7rvJbrycRuzFEKYcm3OxMSCV0B
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 39b4b670c9cc0554f7bfe97dc07f6a06_JaffaCakes118
Files
-
39b4b670c9cc0554f7bfe97dc07f6a06_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: - Virtual size: 1.5MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 946KB - Virtual size: 948KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
and Size: 2KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE