Static task
static1
Behavioral task
behavioral1
Sample
4625e41f7ccbd1ab169d665121034752_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
4625e41f7ccbd1ab169d665121034752_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
4625e41f7ccbd1ab169d665121034752_JaffaCakes118
-
Size
577KB
-
MD5
4625e41f7ccbd1ab169d665121034752
-
SHA1
06a854a453a6bb5d64df476044140d1428fd35f9
-
SHA256
ff573280232ed2fb078b7ac91b816d2d847e6955f321a9afc8ad4e0cc6bd7793
-
SHA512
9556bf88284b9fa6fd00ec168303fec197a9ff2ff1981cd008f2f0ea7e70f13ee9f61959e82fd5a428753b3f6affa9de0b98df9bc93f428d1f55836c2574bbaf
-
SSDEEP
12288:IAhIUe6GgzZ9mlpJHMaxqh1w4KiHWq/79mgPADXApwGq:IAhIHPoZ9EJsaxaRHvHlwGq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4625e41f7ccbd1ab169d665121034752_JaffaCakes118
Files
-
4625e41f7ccbd1ab169d665121034752_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 520KB - Virtual size: 519KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 56KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ