Static task
static1
Behavioral task
behavioral1
Sample
128963528e6cb03078ef9f584e946bd4_JaffaCakes118.exe
Resource
win7-20240611-en
General
-
Target
128963528e6cb03078ef9f584e946bd4_JaffaCakes118
-
Size
620KB
-
MD5
128963528e6cb03078ef9f584e946bd4
-
SHA1
cbce6617606da167fdf40a390d9e75dc55cdc97e
-
SHA256
167f6c3cd08077a0a1f86513e84c27ae0f39d8b2f1bd1b2833e330465de0388c
-
SHA512
1239513f028948a35b577d30f5f354b6338f9a494d1e2aca84b0644fd262de34afaf1b6658b3294e821ee4da0b9035b3eeb6d8522eab3399321ceb4d6ca7b995
-
SSDEEP
12288:JTmbU0MBAUZB0igu6G/KdM9h2418lbkCZuoYYsK5yxXvX7L35yxXvX7L:JQUX0iA8Ko2wwgztYsAMDLpMDL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 128963528e6cb03078ef9f584e946bd4_JaffaCakes118
Files
-
128963528e6cb03078ef9f584e946bd4_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 307KB - Virtual size: 307KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 312KB - Virtual size: 311KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ