Static task
static1
General
-
Target
3baa5f3293c52a5eca8b5fbc869d9ce4_JaffaCakes118
-
Size
186KB
-
MD5
3baa5f3293c52a5eca8b5fbc869d9ce4
-
SHA1
859cf912f8702842d44da9af1e92c70b6bfe2c19
-
SHA256
b36ea1e9fa24cfd7ee25234b7000a784a006c0c293eaa8312768ea6b8dcbd7a5
-
SHA512
bc714d3df130d7fcbea8f1d4aba2a876af215967becd504df6ad8e1c2fc3b11873a00cc5d94700d55456285dcc28e3d03a0cee3ce5121d400d2bd8e8c9a81498
-
SSDEEP
3072:OVSioPcGRyim/EGTsQbp8B+gHGjDr+VSioPcGRyim/EGTsQbp8B+gHGjDrMoz5zK:CHfGRyBcGjbp8BBHGjCHfGRyBcGjbp89
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3baa5f3293c52a5eca8b5fbc869d9ce4_JaffaCakes118
Files
-
3baa5f3293c52a5eca8b5fbc869d9ce4_JaffaCakes118.sys windows:5 windows x86 arch:x86
e7728b5f19308751a2c306fc2785ac0b
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
hal
ExAcquireFastMutex
Sections
.text Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 62KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 128B - Virtual size: 78B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 392B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ