Static task
static1
Behavioral task
behavioral1
Sample
ef8d78039ed591334f4de8984e81eb81_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
ef8d78039ed591334f4de8984e81eb81_JaffaCakes118
-
Size
344KB
-
MD5
ef8d78039ed591334f4de8984e81eb81
-
SHA1
aca345351f611346e864c2ef8d064e9cd05540dc
-
SHA256
7854243c9a660194db86583f33c320c01142ba7ec3a3b8874d91ef196fad4cf5
-
SHA512
d585accda3903e3865a7d0e49526aabb2b96c5d7be20a8d6a45de797d6cf9492c0e1c274041d8bccb5fa77765354fb33f6d5c5cd6cb1197b9b063e2c5458b425
-
SSDEEP
6144:XNL0A0bsqnhqQ+3HwOcc0WI+CNG5RrG/Ahp7iot3Jj0SnPoLbgZ/8g:Z+bocc0WVT59php7ioUSnPH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ef8d78039ed591334f4de8984e81eb81_JaffaCakes118
Files
-
ef8d78039ed591334f4de8984e81eb81_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 341KB - Virtual size: 341KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ