Static task
static1
Behavioral task
behavioral1
Sample
d3881353010a24a7891041fef602db64_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
d3881353010a24a7891041fef602db64_JaffaCakes118
-
Size
912KB
-
MD5
d3881353010a24a7891041fef602db64
-
SHA1
da4ba4d147639925d1764e2462ee01390265f789
-
SHA256
c7083a70b7359ff0248fc57a8b63bd9fbd2756e6693ff787d919f28d382578d8
-
SHA512
e988464b5fb7c6780005b7bac27b8d6c55ef4edd1c7f4d2966a4fbe51ec3d66f560e7fb2cb60dca24ec3e4d68f1c7906b9e0fe05b7a3cfa7179f5277cceaa6ab
-
SSDEEP
24576:asaseSOO/113Qb+8q20GT0qDNHbDLac0aW:asasuO/THGZJHCF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d3881353010a24a7891041fef602db64_JaffaCakes118
Files
-
d3881353010a24a7891041fef602db64_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.rsrc Size: 150KB - Virtual size: 150KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 161KB - Virtual size: 160KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ