Static task
static1
General
-
Target
45520d95c081dde575223604b2e33aed_JaffaCakes118
-
Size
6KB
-
MD5
45520d95c081dde575223604b2e33aed
-
SHA1
f283d73564011813f421788e57d85b57d1750805
-
SHA256
5b702efb0a9c42cc807f4e7d8be3e04f5f2cbd0750b7d510f9dea500c1743111
-
SHA512
34e3c7cefcf62d8efd9ebcbddb7196d082a1443347d897ee136e631baebba919928953ff0fcf30bfa94fff034036cd6c08ac71e673177da3e73b9e0c9379cc07
-
SSDEEP
96:h0yPn31tWd86pmrm68HnkOEWDOzZLBW3FFdmf717MFd9ceW+2ZBb:lLWe6srmv2WDOpBW3ndG7VMFbWX7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 45520d95c081dde575223604b2e33aed_JaffaCakes118
Files
-
45520d95c081dde575223604b2e33aed_JaffaCakes118.sys windows:5 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 2KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE