Static task
static1
General
-
Target
48a83d5acdc2540e54be082107c85f52_JaffaCakes118
-
Size
38KB
-
MD5
48a83d5acdc2540e54be082107c85f52
-
SHA1
9be7da2fdf9589885fb7584861c7500a23f31759
-
SHA256
7ee87bed6826547fc10f19adf91325b194e53e4f40af3b7798fa19ef76f9a931
-
SHA512
c1ebd6bc3ec30ec547c1e181503dade375621fb02b95289663ebb81d22d578903ca87305210d365c315a8d14047013b4b6b20013fdb174b8e1257319178dbe59
-
SSDEEP
768:WB3DSc91STVh9n0odDebC7MQ6NONO/Mt7DpdK1yjQq6kH94svIUuaLO:WlDSc9EZ3tdiCIQ6mOY7DKyZQU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 48a83d5acdc2540e54be082107c85f52_JaffaCakes118
Files
-
48a83d5acdc2540e54be082107c85f52_JaffaCakes118.sys windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 640B - Virtual size: 636B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 768B - Virtual size: 755B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ