Static task
static1
Behavioral task
behavioral1
Sample
010ef8411a45adfa7df860031cc226b4_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
010ef8411a45adfa7df860031cc226b4_JaffaCakes118
-
Size
324KB
-
MD5
010ef8411a45adfa7df860031cc226b4
-
SHA1
86af3c7f7b7f1af778fa47583633992e5ba92842
-
SHA256
2d4c85c1f3daf0e804a4420adf33a12b7b2368faac8b8aaa3417181475a7a50f
-
SHA512
21926f5f8f42b3cd7c81adaba7d67a968431a3c172811751f5d0b77430f76b81b8a5ec6dde67150b0e2c79f3469ebdad32855c39221c5202a60cd47fd573b6b8
-
SSDEEP
6144:lYWaeHn1lmDajgG33QMiWxWchBAR331qy0hyDwI7sl95LSLDFx3jk040SmxJqaXk:WW1H1lmD9StxvhBARo8r7s5yET0pxJl0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 010ef8411a45adfa7df860031cc226b4_JaffaCakes118
Files
-
010ef8411a45adfa7df860031cc226b4_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
holaaaaa Size: 34KB - Virtual size: 36KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
fuc�kkkk Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
hahahaha Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
�ejooooo Size: 1.1MB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.newimp Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE