Static task
static1
General
-
Target
4263d49c7f9cab1995e15c7404c2b67d_JaffaCakes118
-
Size
8KB
-
MD5
4263d49c7f9cab1995e15c7404c2b67d
-
SHA1
68928b9fdc650021a9e085655aaac84182354b66
-
SHA256
f6c33defe0d7f2c0c51133e6b89c6830ae0883e6748d0636cb097f0a27ea0737
-
SHA512
00fc4855ca353f176911d87878b55eaa6005ec82f6168b3ba2176d6cb5956d9c3e865bb4eddcd47c735d8386875d70714425b86539a5c41b6b935d93ebbb2818
-
SSDEEP
48:6pYyzx0rwVUVCn7UwV8MEecEmlS0fCzlNSqKHeqaLA35Gu+m82GZGxa101AvlFzf:eY/+UPwnEtPSmSLuJbNxF1ulokTp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4263d49c7f9cab1995e15c7404c2b67d_JaffaCakes118
Files
-
4263d49c7f9cab1995e15c7404c2b67d_JaffaCakes118.sys windows:5 windows x86 arch:x86
a590716ddb4874b683819c10e78e2732
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ord53240
ord53264
ord53288
ord53318
ord53344
ord53354
ord53370
ord53386
ord53410
ord53430
ord53446
ord53460
ord53480
ord53502
ord53516
ord53526
ord53550
ord53578
ord53602
ord53622
ord53646
ord53664
ord53688
ord53700
ord53710
ord53726
ord53758
Sections
.text Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 500B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 320B - Virtual size: 312B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 736B - Virtual size: 712B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 352B - Virtual size: 346B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ