Static task
static1
Behavioral task
behavioral1
Sample
26eec7f89b98e56bf28db7c9add39a6f_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
26eec7f89b98e56bf28db7c9add39a6f_JaffaCakes118
-
Size
129KB
-
MD5
26eec7f89b98e56bf28db7c9add39a6f
-
SHA1
45ee2b07145d2b714c48f6f5b966d16823dd4b35
-
SHA256
16ffd86b1b1ecad010a3aff298c9ce2cb6585318c6feecb9ce98de5886a07714
-
SHA512
15ac115691b9d91f85c9b30ed60487e13c16c0fea6c7dfb0c74fcc7f7ce94d41fceef7f598e452073bb67a50aa7637c3d35db9b2938ca46a678f27b055999caf
-
SSDEEP
1536:UUBiFqtXmPmgC9B2lciLKuIHe9J46geNIvB3Qo+OB6FLsjL7k3JhYxYYG0L1UldF:UOn16mg2olbvdY1ZvpQxOAJhcf0E
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 26eec7f89b98e56bf28db7c9add39a6f_JaffaCakes118
Files
-
26eec7f89b98e56bf28db7c9add39a6f_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 3KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 92KB - Virtual size: 91KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.zdata Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE