Static task
static1
General
-
Target
77ebabc4f8ac18f14fea0ea215992ae7_JaffaCakes118
-
Size
1.2MB
-
MD5
77ebabc4f8ac18f14fea0ea215992ae7
-
SHA1
6067536fb769fe0535a25d0bf1d37af7fa20019c
-
SHA256
e08e8db6859fccdc54c7402e27d94832c1ebe3da9a322a2ba4cf48450b481260
-
SHA512
8c098fd910088e5de6afbbaed3e4ef1d20a023ec28e0a0e46df550ab99922ed9f4f9ae40c84d7a8226f4ec726dceea56eeff5fe41421477c9a81807f79fb3d39
-
SSDEEP
768:jlFaA//r8e3F4U3FtiHqbePZld81eD4j6waUA5H/bY3Dr:jlFJ/4GF4iFtDbe61S4j6wa9HU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 77ebabc4f8ac18f14fea0ea215992ae7_JaffaCakes118
Files
-
77ebabc4f8ac18f14fea0ea215992ae7_JaffaCakes118.sys windows:4 windows x86 arch:x86
303bbc026869bdbf03193b6bae33bcda
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
CcFlushCache
MmGetSystemRoutineAddress
ndis.sys
NdisSetTimer
Sections
.text Size: 17KB - Virtual size: 17KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE