Static task
static1
Behavioral task
behavioral1
Sample
ef29b489dff047a9f42fee553c3e6399_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
ef29b489dff047a9f42fee553c3e6399_JaffaCakes118
-
Size
748KB
-
MD5
ef29b489dff047a9f42fee553c3e6399
-
SHA1
eb1ae2d0c021af676cfd62a7e83a44057efc42a9
-
SHA256
88002ff36d98ce9f749ec4c97d8721f5c993b9132da0721ecbf739fcd1158aac
-
SHA512
085508daa214a4e77dbb9ab07e20fd987eccd6f4d36fbe35bf18e855590759c32063564281db1cd047c25e7c71321af041870a034334862833c247000cbce922
-
SSDEEP
12288:LC/utUzM0GgtGeMn7wpL0QFfPmcNgRZmB7sKg87ns27va862/bHjRFliv0doDtfE:OXc8Acvs2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ef29b489dff047a9f42fee553c3e6399_JaffaCakes118
Files
-
ef29b489dff047a9f42fee553c3e6399_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 744KB - Virtual size: 743KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ