Static task
static1
Behavioral task
behavioral1
Sample
45a7e70ef28d9d8504c5bd72ba13f3be_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
45a7e70ef28d9d8504c5bd72ba13f3be_JaffaCakes118
-
Size
264KB
-
MD5
45a7e70ef28d9d8504c5bd72ba13f3be
-
SHA1
573a04603fdc55e04307727dd3816f316b894680
-
SHA256
6a95367b492ae4c76fcba7778a7f5bd6a4161840eb44f7f57ac895e2c73f835b
-
SHA512
fb4e701a2944d208a2a9904f894450fa7fb66b40cb7e0f19964866768e62f50569acee4e04c2ecbb8008eaeea122ca62d587f6a31f677f3bb48fa34359fda2eb
-
SSDEEP
6144:sBDPC5+0V/3U5xifUntIIHFteqMTENVYvKMyHhRE4adf3aGfrfiFOl:sp++0V/3ojtsqMTEsvm4DikbiUl
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 45a7e70ef28d9d8504c5bd72ba13f3be_JaffaCakes118
Files
-
45a7e70ef28d9d8504c5bd72ba13f3be_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
dscsd Size: 14KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cdscs Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
vfdvdv Size: 2KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.newimp Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.udata Size: 236KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE