Static task
static1
Behavioral task
behavioral1
Sample
3ecf9a320455c2c43ca9f3245be4956d_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
3ecf9a320455c2c43ca9f3245be4956d_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
3ecf9a320455c2c43ca9f3245be4956d_JaffaCakes118
-
Size
202KB
-
MD5
3ecf9a320455c2c43ca9f3245be4956d
-
SHA1
8456f1449b0986240b4e0b3f65d445e847c7a189
-
SHA256
0908b00e4e15181c6c9987c4943e47ca510bd996458caeaf9fb7429e3de9f048
-
SHA512
439ab22dfd012a140d49f223c0a7ce4a4953a35140bf36f82032e68b12fd338f89bab201ee56a98caddd0aa9f880ec3c022f3bf35b4d2f35663bba2933691056
-
SSDEEP
6144:kY58H0aWVcOHyhCWWGCCBwHl+EmY9B/wQsW:R5KpuSsWWDCBw7rsW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3ecf9a320455c2c43ca9f3245be4956d_JaffaCakes118
Files
-
3ecf9a320455c2c43ca9f3245be4956d_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.code Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.teXT Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ