Static task
static1
Behavioral task
behavioral1
Sample
044e98c2f9fb4c6966970e32ef11a6a3_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
044e98c2f9fb4c6966970e32ef11a6a3_JaffaCakes118
-
Size
211KB
-
MD5
044e98c2f9fb4c6966970e32ef11a6a3
-
SHA1
29d7fe446b8e57e0e9fb66ae05dafdfdbccc510a
-
SHA256
bcb5089a4953d599c0cc71b3b15b865ff83aa1aea71f69900e60420c67b5f012
-
SHA512
0183a413af5799f19f998abd05cfe6125037c370de025976d97afa82e8acd4c267d4a46f34b445bf110539c404b8c7662523c6dbd6faf96b27d5683b0ded0146
-
SSDEEP
3072:EhOm2sI93UufdC67ciyt3ujFf7TQsq5Va9h9Z:Ecm7ImGddXyt38TU5WZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 044e98c2f9fb4c6966970e32ef11a6a3_JaffaCakes118
Files
-
044e98c2f9fb4c6966970e32ef11a6a3_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.rsrc Size: 155KB - Virtual size: 156KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE