Static task
static1
Behavioral task
behavioral1
Sample
1327858cf19f91686a7e99d85c2cd7dc_JaffaCakes118.exe
Resource
win7-20240419-en
General
-
Target
1327858cf19f91686a7e99d85c2cd7dc_JaffaCakes118
-
Size
405KB
-
MD5
1327858cf19f91686a7e99d85c2cd7dc
-
SHA1
d4b7a57fdd53905ef6295fcc52e8ce5c7dcf0de7
-
SHA256
f3f1100b69c6493d94c78c77a1140c65cccc5faa7a435366c8b62b436b2ee73b
-
SHA512
6213df43817c2ea37cbe8addaf6f2d051554661f43148955b2c3d5c91d6bc122689e63ced4e85d511fa867c852fb52f1a511b6e66a75a6383633d4f84f86510d
-
SSDEEP
6144:PM4AtMRIF/dcdy+EtskdjGbvdzDy+BwcXtDWO7T09ci90Ih942iAGZ7:0ltMeR+E6kkbVHyvcXty598094IGp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 1327858cf19f91686a7e99d85c2cd7dc_JaffaCakes118
Files
-
1327858cf19f91686a7e99d85c2cd7dc_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 14KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: 85KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.udata Size: 288KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE