Static task
static1
Behavioral task
behavioral1
Sample
dbb37168729ea860347378e718ff2a08_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
dbb37168729ea860347378e718ff2a08_JaffaCakes118
-
Size
528KB
-
MD5
dbb37168729ea860347378e718ff2a08
-
SHA1
44189bbcba908162314ea992391aa76ba763b436
-
SHA256
eb8ae9dbfa0ac8906bae8856935ff4498c79e6ca4375d7313056caec3d9beac3
-
SHA512
11863f294a641e775f188fa4f4b03822825cf70632b8dc2b8dbcdd5e242e43877094e16e0972a89a654e6e2657cbcec3c7d2bd403eea94684ff687a0a0616a84
-
SSDEEP
12288:ezP91BgDYgZtUe1pFr7jHeCGCxBepMjSz/cvDop05:UBNeoIKtu
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dbb37168729ea860347378e718ff2a08_JaffaCakes118
Files
-
dbb37168729ea860347378e718ff2a08_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 520KB - Virtual size: 519KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ