Static task
static1
General
-
Target
f045bd97b66730c259af2fa101bf41e0_JaffaCakes118
-
Size
656KB
-
MD5
f045bd97b66730c259af2fa101bf41e0
-
SHA1
4e2ddea0932503dc70c0d803cb91f649d6177b1a
-
SHA256
f8281243b122f38eec0ed68624a304e3fb1918210045ea4b2c374b17d9bc8c2f
-
SHA512
2f0831db38c8cfb63768ecef78426bbbbce5996ae9947639e7d2b60f73dcf4c2657f5b4f03a9a79c818d1e9973cca02dd9720e84e78ce3e7b6a251bc8bad82b7
-
SSDEEP
12288:a9/xJIAR55Xj4oQt7u9hxf7tuO+er+nlqlsO4Je6ShwfYZM1tcaQeWixn2zu26KN:a9/xSGNxy69hxf7M5eYI+O3heYZM1tcr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f045bd97b66730c259af2fa101bf41e0_JaffaCakes118
Files
-
f045bd97b66730c259af2fa101bf41e0_JaffaCakes118.sys windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 708KB - Virtual size: 708KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
_PARA_DA Size: 512B - Virtual size: 476B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 101KB - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 165KB - Virtual size: 165KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.STL Size: 128B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 128B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PAGE Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 896B - Virtual size: 880B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.reloc Size: 33KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ