Static task
static1
General
-
Target
4d44fa344e1e8a945565abb44c723c8f_JaffaCakes118
-
Size
208KB
-
MD5
4d44fa344e1e8a945565abb44c723c8f
-
SHA1
65401c31e8b8fb85e0f531b5a1c9b31b9bf593ea
-
SHA256
42e82fa1cf007bc0c5475dfedd525a90ca55a91b3e9b8e2101c87b902a9687fe
-
SHA512
9e435422f278492d17486be893c161bdd6f0542b790d9de1c5af4d5e774a6e6c44be496d973cf1d4d5f1ce98b21b3123fb2ba54737010db8af1b6166b3a9cf39
-
SSDEEP
1536:KaAQBYCu/8Into1JrCu4B9v3ux1anXfQHNBOk7CAx7qdccLJCCt94HqdHonOBgaR:pPBYlzk75sO0gD+xD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4d44fa344e1e8a945565abb44c723c8f_JaffaCakes118
Files
-
4d44fa344e1e8a945565abb44c723c8f_JaffaCakes118.sys windows:5 windows x86 arch:x86
8fbd15ffb20f6af5887ee85a2841f0e7
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ord27498
ord27516
ord27540
ord27562
ord27584
ord27594
ord27604
ord27624
ord27646
ord27662
ord27684
ord27706
ord27716
ord27730
ord27744
ord27758
ord27782
ord27796
ord27818
ord27842
ord27858
ord27876
ord27900
ord27930
ord27946
ord27976
ord27992
ord28024
ord28044
ord28072
ord28092
ord28102
ord28120
ord28136
ord28160
ord28180
ord28206
ord28224
ord28250
ord28260
ord28288
ord28316
ord28328
ord28352
ord28368
ord28384
ord28396
ord28418
ord28434
ord28450
ord28478
ord28502
ord28526
ord28550
ord28572
ord28604
ord28622
ord28638
ord28654
ord28680
ord28692
ord27464
ord28736
ord28760
ord28790
ord28806
ord28834
ord28854
ord28882
ord28908
ord28932
ord28954
ord28974
ord28994
ord29018
ord29036
ord29068
ord29088
ord29098
ord29114
ord29128
ord29140
ord29156
ord29168
ord29184
ord29202
ord29216
ord29228
ord29248
ord29262
ord29284
ord29302
ord29322
ord29336
ord29350
ord29374
ord29386
ord29410
ord29434
ord29456
ord29476
ord29504
ord29536
ord29552
ord29564
ord29592
ord29616
ord29642
ord29662
ord29680
ord29702
ord29728
ord29750
ord29772
ord29796
ord29828
ord29844
ord29868
ord29878
ord29896
ord29906
ord29916
ord27430
ord27406
ord27386
ord27362
ord27352
ord27326
ord27306
ord27278
ord28712
ord27256
ord30090
ord30068
ord30048
ord30028
ord30000
ord29980
ord29956
ord29942
ord30112
Sections
.text Size: 92KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.bss Size: 99KB - Virtual size: 99KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ