Static task
static1
Behavioral task
behavioral1
Sample
BANK SLIP.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
BANK SLIP.exe
Resource
win10v2004-20240419-en
General
-
Target
07b09f1e8c5494e16087c1fdf2c6808f_JaffaCakes118
-
Size
639KB
-
MD5
07b09f1e8c5494e16087c1fdf2c6808f
-
SHA1
ba38a112f8e0a0a8f2563c7ca2d4159a670afeab
-
SHA256
95a0540d09fd56f0a71d989e200fd14c6d4735b0333417c38b848f3afa3eab85
-
SHA512
f042c62a911cdcee3e5ba49e7ed960de937b8193316c710f661091af035aa89e7215558cb264646896239cb9fae851f63900d73b9dc47bfd08a1b38eac59c844
-
SSDEEP
12288:A2ibYiJ0dCCwy4W+3ChgsLI4n0AZXgneALudtKS00hWbM+0DkAYJEj2g:A1RZgSsLI4nZNdvL0j/VXijr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/BANK SLIP.exe
Files
-
07b09f1e8c5494e16087c1fdf2c6808f_JaffaCakes118.gz
-
BANK SLIP.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 696KB - Virtual size: 696KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ