Static task
static1
Behavioral task
behavioral1
Sample
19c869c159bef75bd6462f24a39dc992_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
19c869c159bef75bd6462f24a39dc992_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
19c869c159bef75bd6462f24a39dc992_JaffaCakes118
-
Size
609KB
-
MD5
19c869c159bef75bd6462f24a39dc992
-
SHA1
d7d6923e161fc136cfc187a9e2505c5ed930ca66
-
SHA256
79856ccc4982e7a8728e8098715c2520f31415f0a187f3cc47809a63027d865f
-
SHA512
4e1b79dd75fb9b8feb1d4ebffe2e4515fd579b1bee4345b242ce1b12168675d92b4f71deb34a10bd03af031f301012a8f4246c45b771cdc537650aeb7b59d26f
-
SSDEEP
12288:KevQgSVWa2ugDkz+6/VPMPTW2bF/i54GTe+2MOeT4F:KeYgSMa/gY0Pau/i5yVNe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 19c869c159bef75bd6462f24a39dc992_JaffaCakes118
Files
-
19c869c159bef75bd6462f24a39dc992_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.rsrc Size: 62KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 546KB - Virtual size: 545KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ