Static task
static1
Behavioral task
behavioral1
Sample
f941ada7ec4bd94950a6acd57ce63c54_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
f941ada7ec4bd94950a6acd57ce63c54_JaffaCakes118
-
Size
894KB
-
MD5
f941ada7ec4bd94950a6acd57ce63c54
-
SHA1
2a080b3e63a95b0ca776da4562c16e8ef7de1088
-
SHA256
5beebb2cb262cfba8e7f476a5332102ee7c128c2030e16c3eb86df04be90e383
-
SHA512
40a622d610a7adf4257dea0552532698d6d069ab8f8c0202f0ee2a032e052e18c4dd86baa392cbf61571cc36f242f31dd9f36ef2f21d799e16f302750fb9e871
-
SSDEEP
24576:4CAwFwsK+3a6m38W+XRZLembsJCiS/H1C:Bhqn3GHv9iS/H1C
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource f941ada7ec4bd94950a6acd57ce63c54_JaffaCakes118
Files
-
f941ada7ec4bd94950a6acd57ce63c54_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 891KB - Virtual size: 891KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ