Static task
static1
Behavioral task
behavioral1
Sample
SOA.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
SOA.exe
Resource
win10v2004-20240226-en
General
-
Target
0a8bed02098a13389f0c54ac46e83a35_JaffaCakes118
-
Size
383KB
-
MD5
0a8bed02098a13389f0c54ac46e83a35
-
SHA1
dc78b64923e2b37ec0013d3d401b6e95abb42dd8
-
SHA256
ec1ebb7d6744634e8f82e87c03e821a90e84ea038760dbec89e2c75ede498547
-
SHA512
892081be09dd3a90126d907ac7fed4803a423f8ef0ffe4a8b6a5ec30e5d5e06b33aab28229407547d184535197a21588de9e41cb306808574f8dfab84e8ec757
-
SSDEEP
6144:uP/L2N5f2RNHT462kisWaX2C5sZllVQlZe6zuOMGxSwq2hnv/+gi4Dpme8txcX+:2/C5fSFjisnb8PVQ/hzuObSLG/n/V187
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/SOA.exe
Files
-
0a8bed02098a13389f0c54ac46e83a35_JaffaCakes118.rar
-
SOA.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 412KB - Virtual size: 411KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 99KB - Virtual size: 99KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ