Static task
static1
Behavioral task
behavioral1
Sample
e28c1eb3901ebf8a350118119051a879_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
e28c1eb3901ebf8a350118119051a879_JaffaCakes118
-
Size
949KB
-
MD5
e28c1eb3901ebf8a350118119051a879
-
SHA1
499e2379b855f891b01d46375573b82f52eeaff8
-
SHA256
a19cee0f8d7ce055c99ddfd266c56af0856771e6ad5989b4bcc279cbd780b070
-
SHA512
610ebe54d3cc49754e7e91d2e96693ddb017e507367531824fc9b4a557625ea2a1d6afed6730a92517acf91111b3154323b9dbae0ecee3b9d61ed13c826a5129
-
SSDEEP
12288:AGRi/B4pVZi9702Hwi+b5bt+Bx9NmWnYSseiz6UOWqHh33rONpg3/IzsqLACkjgc:RzVZHi+bNENm8cxO/Br0O3/IHLd0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e28c1eb3901ebf8a350118119051a879_JaffaCakes118
Files
-
e28c1eb3901ebf8a350118119051a879_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 943KB - Virtual size: 943KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ