Static task
static1
Behavioral task
behavioral1
Sample
90a2d295d4e5950379bba11c562c6d70_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
90a2d295d4e5950379bba11c562c6d70_JaffaCakes118
-
Size
804KB
-
MD5
90a2d295d4e5950379bba11c562c6d70
-
SHA1
088a10386ddfb15aef4c74666719f88b6eb91506
-
SHA256
84881b1a60042a853baf05ca0dcfdbdb85c72edfc8c6d46493fe6e4f6697b2f6
-
SHA512
3635140742bb2c27b9d6b922ecbdc9ff547a24019821a47b8094eda005973b8d2130af82830e6aa72fcdb397c994997eece1c9306d68218d61c16cb3375e0f90
-
SSDEEP
12288:yjYTIwsaZUj43HOZGkocfj/YwIlfZkJOT7y5s+7:yj/wsGcfrQRkc7Mr7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 90a2d295d4e5950379bba11c562c6d70_JaffaCakes118
Files
-
90a2d295d4e5950379bba11c562c6d70_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 479KB - Virtual size: 479KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 323KB - Virtual size: 323KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ