Static task
static1
Behavioral task
behavioral1
Sample
e60c1bc83635a8480e1970205944b7a8_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
e60c1bc83635a8480e1970205944b7a8_JaffaCakes118
-
Size
760KB
-
MD5
e60c1bc83635a8480e1970205944b7a8
-
SHA1
583890ea81b7180acc4caf95de8b71371e04885d
-
SHA256
917af44057dfe75238e0c9ad9c131610f29c0ac1641c631c5b01bb6ae5dfe46e
-
SHA512
5451c30aa46ef870e4e4cc1d1718d00556ad050d63c8b6dd5377745d80a8b2913c7e12ec803a8d548ef42a07270fa49acaa0c4c8725490a0b6bc28f304af4789
-
SSDEEP
12288:McaQxt8/QxC4CnDbgDPwFVt2NjFktvUvyYc7MBaxUO7gksCTY2nh3b3HbhQyUl6D:LxHCDb0wFVMNjrvyYc/3qCksh3b16Q
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource e60c1bc83635a8480e1970205944b7a8_JaffaCakes118
Files
-
e60c1bc83635a8480e1970205944b7a8_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 752KB - Virtual size: 752KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ