Static task
static1
Behavioral task
behavioral1
Sample
26cc0c76595f1e82f6be57f44a7c6232_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
26cc0c76595f1e82f6be57f44a7c6232_JaffaCakes118
-
Size
821KB
-
MD5
26cc0c76595f1e82f6be57f44a7c6232
-
SHA1
0d58b9a7feb0c43aa20907707ce81ebfd21f21a6
-
SHA256
4275b2dbfe9de1028660a52bae61fc22d560abf0a96d9bf8079b319e8f610973
-
SHA512
be9cc0efe3433a9d8320df49385a699e5df713cfe83008267ba76e334e35058ca7e4aeeda83ae178a62f9fd46e9adfc57cbbc7c1f0e35d5f258a18f4bcb72e4e
-
SSDEEP
6144:v3fINvQlQQbSLXdB8usErKQEDCYwIjtSdj/4KngWIq6jRkO:vPINvWQQV+mDCY5SKKngWIj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 26cc0c76595f1e82f6be57f44a7c6232_JaffaCakes118
Files
-
26cc0c76595f1e82f6be57f44a7c6232_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 456KB - Virtual size: 456KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 363KB - Virtual size: 363KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ