Behavioral task
behavioral1
Sample
e31463ec8d305ccc8e713b6f0ab9b026_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e31463ec8d305ccc8e713b6f0ab9b026_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
e31463ec8d305ccc8e713b6f0ab9b026_JaffaCakes118
-
Size
107KB
-
MD5
e31463ec8d305ccc8e713b6f0ab9b026
-
SHA1
1062789bd419fe85c28a81cbe9718bdd00a5708d
-
SHA256
fc19bd4fe32e57b743d6a00aa3ec3b3107d639bf11a898eff57016ac0627b101
-
SHA512
c39b9c0488d6d652840d774a52f3bc01f677fb66ddbe9e577617888c516cd7c07a0a36da4baf616b8adb54db294e1388600181921fdd2814f12b0b7896aa8d22
-
SSDEEP
1536:Ht9pmyZRN/OeYWdOaVezGV4FcnnTbGjbuqgdPnMuyq+dGVkdDjECG6qTaoigi:JZRN/7YaFezGV6cncYPnjyjdGQYPS
Malware Config
Extracted
redline
@nicknemer
185.230.143.48:14462
Signatures
Files
-
e31463ec8d305ccc8e713b6f0ab9b026_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 103KB - Virtual size: 102KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ