Static task
static1
Behavioral task
behavioral1
Sample
4e0b373a268e744d171ec51b84edb2a7_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
4e0b373a268e744d171ec51b84edb2a7_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
4e0b373a268e744d171ec51b84edb2a7_JaffaCakes118
-
Size
324KB
-
MD5
4e0b373a268e744d171ec51b84edb2a7
-
SHA1
d35ae3869a8f34a467a725e1f0160b01287f10fa
-
SHA256
c4c3b4c861caf87da98a17fe58415ccd12d1a32260f34e47b3111a6cd21f7fe1
-
SHA512
59e45e2fd14ff0c8729669b9e5c891906fdfcd42f97a69316e69058fdea4c4409d467e4cdf606da829af2dca4e21d1bcea41f35bf683ac8899a87f8c63550103
-
SSDEEP
6144:QqbZ37OIAUuycwRfkWmqQbDTuEJy+5niz3PfcKrKywq:LZ37ORU4WNQvTMdGyn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4e0b373a268e744d171ec51b84edb2a7_JaffaCakes118
Files
-
4e0b373a268e744d171ec51b84edb2a7_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
qss00 Size: - Virtual size: 204KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
qss01 Size: 86KB - Virtual size: 88KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
qss02 Size: 859B - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE