Static task
static1
Behavioral task
behavioral1
Sample
b3cfebdcb947eb0e4535ae55139ed7f7_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
b3cfebdcb947eb0e4535ae55139ed7f7_JaffaCakes118
-
Size
376KB
-
MD5
b3cfebdcb947eb0e4535ae55139ed7f7
-
SHA1
2a9dd3df89ee7fb877023a611471648bcf3c847b
-
SHA256
12a061b82ef5bc4becaee8f9069db0375fb461302107dd4d53dc85522df8c8e8
-
SHA512
a8fae75285688c25511daf21f12e623477de7ceec01969492c9d9a271611441c5498e82d72bb51a97d225748fe0c9e5fec6dc022ebfefdcfe33b2a5a5a4aca3d
-
SSDEEP
6144:Ri5VGE1WVdpej+0qqPnuVUMqmPsxYUeV01gBZzLhGbv2VTBP0wxEOS1:RqJQXwSyv6UuYYFVdXzEr23PPxEd
Malware Config
Signatures
Files
-
b3cfebdcb947eb0e4535ae55139ed7f7_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Code Sign
6c:7c:17:23:38:1a:15:a4:41:61:85:1a:89:4b:f5:45Certificate
IssuerCN=SmartFTP ClientNot Before02-01-2014 12:56Not After02-01-2114 12:56SubjectCN=SmartFTP Client14:e1:a1:1f:a1:01:8b:ce:b6:e8:1a:df:90:19:5c:e6:c9:a0:3c:feSigner
Actual PE Digest14:e1:a1:1f:a1:01:8b:ce:b6:e8:1a:df:90:19:5c:e6:c9:a0:3c:feDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 166KB - Virtual size: 166KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 208KB - Virtual size: 208KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ