Static task
static1
Behavioral task
behavioral1
Sample
484e27072482dbdaad8dc5ba3b42ee02_JaffaCakes118.exe
Resource
win7-20240220-en
General
-
Target
484e27072482dbdaad8dc5ba3b42ee02_JaffaCakes118
-
Size
1.1MB
-
MD5
484e27072482dbdaad8dc5ba3b42ee02
-
SHA1
4ee146db76435dd8db6678b0a3b1c1e6d167469e
-
SHA256
8feb48eae4ca6d55b2d5ad244917791ba9129f821b92d451dd7f02c64b3b5541
-
SHA512
5fd696e79a62b2caf8ea939ed77c8175f6bdf7bd5a316011e7aaf0cba81683669d9fe7197a3d740e9a196dd0143831864ba13725f0260f3892403db264955668
-
SSDEEP
6144:sM2LRbpRbW/yTgXyYSZIaQdaS1BCjLxzi/oyF32SCQoSd:sMqbXTXqa0aSvALs/pF3vZoA
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 484e27072482dbdaad8dc5ba3b42ee02_JaffaCakes118
Files
-
484e27072482dbdaad8dc5ba3b42ee02_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 299KB - Virtual size: 299KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ