Static task
static1
Behavioral task
behavioral1
Sample
97c2579d4d64d3250664b1e3842a1f92_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
97c2579d4d64d3250664b1e3842a1f92_JaffaCakes118
-
Size
547KB
-
MD5
97c2579d4d64d3250664b1e3842a1f92
-
SHA1
bf62d57bcded52e3190c210fd034f5dae383e58c
-
SHA256
e074320678c5242d5b7ecbd96015ad50a41a22b201966bdfdba36061ee06203e
-
SHA512
abd03dd8154ec6b698c9729dd1aeaab36a96982b572c44d518b04f7e08a635641137495e638c4468c72cc6a359c9389a3391b60810a1e894c06923014ea7b21f
-
SSDEEP
12288:ZkSccZ/bEw+28hFxjQPlrBCk5M0toZIV5xT8uqFzIMgypD9hyAfD0te:lcgbAjQPfCkUZULtqyw0Q
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 97c2579d4d64d3250664b1e3842a1f92_JaffaCakes118
Files
-
97c2579d4d64d3250664b1e3842a1f92_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 544KB - Virtual size: 544KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ