Static task
static1
Behavioral task
behavioral1
Sample
eb6493665c45bfe0b78523f99898a87e_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
eb6493665c45bfe0b78523f99898a87e_JaffaCakes118
-
Size
78KB
-
MD5
eb6493665c45bfe0b78523f99898a87e
-
SHA1
411de11037f18f5776b0ab4a2decbc3398f334a9
-
SHA256
2d722e20bad306a966482b4f18e248be4977a510c668419ad7e40cd0e007cced
-
SHA512
fdc6b8097fb3c17f79161c88d02f496e02be0123d118453a23a4e5508aa0033e8fbe5db3106b9712d22886c6dd5a9b60bc6194efdba3b2a30cd5843ba47c2e81
-
SSDEEP
1536:ye5jSMXT0XRhyRjVf3HaXOJR0zcEIvCZ1xjs9np/IPioYJbQtd6qI9/6U1fi:ye5jS0SyRxvHF5vCbxwpI6Ww9/63
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource eb6493665c45bfe0b78523f99898a87e_JaffaCakes118
Files
-
eb6493665c45bfe0b78523f99898a87e_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 688B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ