Static task
static1
Behavioral task
behavioral1
Sample
19e49d8166eaf5fc06026ae2f3afac30_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
19e49d8166eaf5fc06026ae2f3afac30_JaffaCakes118
-
Size
288KB
-
MD5
19e49d8166eaf5fc06026ae2f3afac30
-
SHA1
d1a8e153c4b99e25f8d4f6f008192a3f3887f316
-
SHA256
2a5df6bada9f7a507a04d0889fafd932fdcd12397fa89e4cedae99d101eb8f70
-
SHA512
1f92cc879cd5cae759dab561b7bf3658ccd2b9f28c5a87a138d74c9b2c8a6929c558c042cea7c96d5b24068490fa9632a826ced15630174d789516fb0d2b595e
-
SSDEEP
6144:bJ/SsodMp6FH1tunYLE0ai8wIQn1D2jyvuC3Gfcbr7KwkpkM0S2:bRStdMYVtuYLEpwIc2fwr7K8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 19e49d8166eaf5fc06026ae2f3afac30_JaffaCakes118
Files
-
19e49d8166eaf5fc06026ae2f3afac30_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 286KB - Virtual size: 286KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 912B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ