Static task
static1
Behavioral task
behavioral1
Sample
029ba195c7ee484f1d9e890cb53c3253_JaffaCakes117.exe
Resource
win10v2004-20240419-en
General
-
Target
029ba195c7ee484f1d9e890cb53c3253_JaffaCakes117.exe
-
Size
13.0MB
-
MD5
70c615d1077dbc18bdbbd02753c16028
-
SHA1
b80b2fb3e44bc0dc8e554a1a08760d8c0c9d845c
-
SHA256
775e151f55887de17b88f7c312b6e4169fd620740b40284d1a6896395a2d36c4
-
SHA512
05d6653557b79a3384f4ccd1d39866e26398b8c10026b76da01a144614c284425502d2f9c38ea5920537150bffe0a773281bfd552145dbcb44823097fd121267
-
SSDEEP
98304:pkseIT4bNJFY3OqtZ+KH4kpc+DX/0H5eNnW:pksejBHYIKYOD2eNn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 029ba195c7ee484f1d9e890cb53c3253_JaffaCakes117.exe
Files
-
029ba195c7ee484f1d9e890cb53c3253_JaffaCakes117.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 3.4MB - Virtual size: 3.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ