Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_44bc6a85155a66270e3f3519dbe25440.exe
Resource
win7-20240903-en
General
-
Target
JaffaCakes118_44bc6a85155a66270e3f3519dbe25440
-
Size
660KB
-
MD5
44bc6a85155a66270e3f3519dbe25440
-
SHA1
1e866e797be3ae02cfced75ca11dfbdc26ead266
-
SHA256
d4872dd5974c293e0594d61291212d9868657918a0f85c34166be16e6d46f605
-
SHA512
ac22c38573d67c8ef4eea07d9bc79776386917f40b449988cdee16e39b7d1c2a583191a4201627b1deb16cb03fb9d72a77b79609b9728009a5e2651f6f73dc73
-
SSDEEP
12288:k16zhbcKiFyKBU/eEr3kxoj2x2P7F+WunPv1:hdbyyKymE7kydP7Y/n
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource JaffaCakes118_44bc6a85155a66270e3f3519dbe25440
Files
-
JaffaCakes118_44bc6a85155a66270e3f3519dbe25440.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
CODE Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 589KB - Virtual size: 592KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rmnet Size: 56KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE