Static task
static1
Behavioral task
behavioral1
Sample
e28ad0bdecf2d01738905d2671e21b0f_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
e28ad0bdecf2d01738905d2671e21b0f_JaffaCakes118
-
Size
587KB
-
MD5
e28ad0bdecf2d01738905d2671e21b0f
-
SHA1
d35461f8ffa2391517ed46a32d9fc8fe9baa9e14
-
SHA256
e95767ddcb06f45cdec003a051cb78f551313c70555600d94ec7676fc785c874
-
SHA512
a87eaafde4d0805aa91898bdf1f8e75baa0ca42659c2b3e2ee7a84bdc4dea7290e1673cf8d0662b37739e601cc2d9e2bc72fef7d4a4086c5f3875a3770817af1
-
SSDEEP
12288:5k+r8WL6FriXu93CQ5eA1GoOVzPqHESk1gnfLJeNuyZMoZjC1dVTbO/CbDmk:+WS13m0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e28ad0bdecf2d01738905d2671e21b0f_JaffaCakes118
Files
-
e28ad0bdecf2d01738905d2671e21b0f_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 585KB - Virtual size: 584KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 668B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ