Static task
static1
Behavioral task
behavioral1
Sample
149c3acb83ef811297a45c16dc4cf0e6_JaffaCakes118.exe
Resource
win7-20240419-en
General
-
Target
149c3acb83ef811297a45c16dc4cf0e6_JaffaCakes118
-
Size
409KB
-
MD5
149c3acb83ef811297a45c16dc4cf0e6
-
SHA1
3e4ac6627f4eaaafe58797941ba0f5095d5ee2fd
-
SHA256
e104daf94d094161b8ad949febbdc54fb2bab93c0be5aec0769123dc0ba0bca3
-
SHA512
02fbf7dfa4b4b5f4df686e0844fc7862e91c618b50eb877aa86d197f9276c4afcedc8a7430ef519405403723582cf164bd89ee38c865a6af6d1564f94882bfc9
-
SSDEEP
6144:1kgN0muEX9LRsSU/nS0U0S3ClVx6BJh0rndlJO4qw5Fp/E81ZKXiqhXkAq02F5//:2gzuGISgKix6/hkSw91ZehXVE5/21AX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 149c3acb83ef811297a45c16dc4cf0e6_JaffaCakes118
Files
-
149c3acb83ef811297a45c16dc4cf0e6_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 404KB - Virtual size: 404KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ