Static task
static1
Behavioral task
behavioral1
Sample
d3aa661e379ab45d42e977fe6440320d_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
d3aa661e379ab45d42e977fe6440320d_JaffaCakes118
-
Size
1.0MB
-
MD5
d3aa661e379ab45d42e977fe6440320d
-
SHA1
d3033071d5e7e099eb1292ac1c29a1ccf9ddc29d
-
SHA256
596742e436c3a63ade42e1f91bb00364a21a3ed3f742122dbe0368280e8f02e9
-
SHA512
2bb2a2678dfd01b47c9617f9d72e9eba589fbebdc074019e0e8776f6575441ca2971252df447648f2c423a0630c49a19a4852e430288e20e763f12cf97ae83a1
-
SSDEEP
24576:n+t551zGlKYkNmyASIHZmHmHMcbG3tbxp1aL9g:n+t55dGimyASIoHmsfbxpE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d3aa661e379ab45d42e977fe6440320d_JaffaCakes118
Files
-
d3aa661e379ab45d42e977fe6440320d_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 672B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ