Static task
static1
Behavioral task
behavioral1
Sample
3a1246fb809adecd55bf260938c382a3_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
3a1246fb809adecd55bf260938c382a3_JaffaCakes118
-
Size
412KB
-
MD5
3a1246fb809adecd55bf260938c382a3
-
SHA1
cca9e157c7711af013c2bf914c89afc11b733406
-
SHA256
5a8d34bd587abf6e61a5ccba02c64efdf416f8536a7518e98097292fa3c62699
-
SHA512
ad6a84730ea52fd1d5c67e5f8d6071218ef4fde9be8394d545127abe9db9509c715eb1096d3b4756c8e686b479514aa1f5fc82cbfe6c2549446a03d21d84f1b4
-
SSDEEP
6144:DeHxZDUkhO8McV8h9p8D62sSJz0S8N1IDTVj+grsZyGijkSKa9ZoBGRXGuj6zXIu:D0xZDUk0MV68t5eLSsZ+jRABQXGm6zXF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 3a1246fb809adecd55bf260938c382a3_JaffaCakes118
Files
-
3a1246fb809adecd55bf260938c382a3_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 399KB - Virtual size: 398KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ