Static task
static1
Behavioral task
behavioral1
Sample
09a8ee07ff8bcdd18f3bc237f6e19c06_JaffaCakes118.exe
Resource
win7-20240220-en
General
-
Target
09a8ee07ff8bcdd18f3bc237f6e19c06_JaffaCakes118
-
Size
641KB
-
MD5
09a8ee07ff8bcdd18f3bc237f6e19c06
-
SHA1
04300a793662035c7ef696e83a9bf6eb30c4e6b9
-
SHA256
3a15d1f531ee5efd3d82e8ebac4ea5fb8277c002f73d3781ec648cf9c65c39ef
-
SHA512
8416d6c77c12fb09390a0b6686e88c81bdd458213f8c7192587e24476efaf9a3a227e42ea1a9d866af767fbb14b80c6c3a66f818caa6b8d45c21fc56a5a91f3b
-
SSDEEP
12288:6OkpGIqQImAu1BEfLDxKlQMZWDT4x+2zXK2xp:GwqIvuBEfYl/ZsT4E2z62
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 09a8ee07ff8bcdd18f3bc237f6e19c06_JaffaCakes118
Files
-
09a8ee07ff8bcdd18f3bc237f6e19c06_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 466KB - Virtual size: 466KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 173KB - Virtual size: 173KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ