Static task
static1
General
-
Target
aba07cd0377012a54382c0993b52295c_JaffaCakes118
-
Size
42KB
-
MD5
aba07cd0377012a54382c0993b52295c
-
SHA1
c7df41cb85e11a23ea745f09b722c43c9806d798
-
SHA256
d5f91247a2a333e9f0eac7d4c6608a4a71277c15ba11d8eddb6e053c5a64bfd3
-
SHA512
aeae73f50c002189c0bc2bda8c4f45695488ce775877b0e0a9179a8cd816e54011f56ead539e1870ab982aaa776ffe34bbff8881e169bb927a784af381d957e8
-
SSDEEP
384:kvaddIDPUDBbrmP7LToI7gH2i7lucpTc9d:PdQUd3gLTotHFXK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource aba07cd0377012a54382c0993b52295c_JaffaCakes118
Files
-
aba07cd0377012a54382c0993b52295c_JaffaCakes118.sys windows:4 windows x86 arch:x86
f04c4d5a9bf7f65c614bd263b87f0756
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
ExRaiseHardError
Sections
.text Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 96B - Virtual size: 96B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 1024B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 128B - Virtual size: 128B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 32B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ