Static task
static1
Behavioral task
behavioral1
Sample
1a4f84fae2b20c9d4363eafbd3542948_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1a4f84fae2b20c9d4363eafbd3542948_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
1a4f84fae2b20c9d4363eafbd3542948_JaffaCakes118
-
Size
336KB
-
MD5
1a4f84fae2b20c9d4363eafbd3542948
-
SHA1
ec298a903b2246389117797f8e2fc81685350b59
-
SHA256
93088347332df3ac34eb4a8208d298c93c2297f3dfe79aff95e8e925088f842d
-
SHA512
95ebfca98198ca9a2969c4ef13d77a8a1c554af8c9e563be98e50a33f43f8213e7284f0aa17e362693dfa5a0b54938d06236659c97cd61e14c8f9685355bf833
-
SSDEEP
6144:RuRmpYv7drjs0q7jHQnOfRrboaqKfxsrsHMkC825XqWgYN+awAiUangZOG5K8m:sRls0qvcEcXczHTKXqWgAwLngB5rm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 1a4f84fae2b20c9d4363eafbd3542948_JaffaCakes118
Files
-
1a4f84fae2b20c9d4363eafbd3542948_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 320KB - Virtual size: 319KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ