Static task
static1
General
-
Target
fc477eed76ee025cbd62c5997b58afd0_JaffaCakes118
-
Size
38KB
-
MD5
fc477eed76ee025cbd62c5997b58afd0
-
SHA1
6ac9cbbb4f9b97971a6bced45f7df7d386fd95cd
-
SHA256
ad328476b4a1267054d1df15b6c9dedef3a1fe36784cc2547288070f757c09f3
-
SHA512
d9e786a7e58fa8dd39fc3a4be37b2f6bb224c49048cc3ce27ae50d4894421fa6a13fdb0b588be5f035016b8ab387e525b3012e1851cc21ca5b49fb6491944f14
-
SSDEEP
768:hs07164UVevpycdi6DrIvk3MtHQFyLHWYiK38r41hCZNkgYZD7:hs0qwZDrIvk3M1QFytii8rqaNk5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fc477eed76ee025cbd62c5997b58afd0_JaffaCakes118
Files
-
fc477eed76ee025cbd62c5997b58afd0_JaffaCakes118.sys windows:4 windows x86 arch:x86
2a43cfb72cce8b08d5c1dce723b58430
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
NtBuildNumber
Sections
.text Size: 37KB - Virtual size: 37KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 32B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 96B - Virtual size: 78B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 64B - Virtual size: 36B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ