Static task
static1
Behavioral task
behavioral1
Sample
15fbf5c441a3a705ec430d6a1519cf8b_JaffaCakes118.exe
Resource
win7-20240419-en
General
-
Target
15fbf5c441a3a705ec430d6a1519cf8b_JaffaCakes118
-
Size
707KB
-
MD5
15fbf5c441a3a705ec430d6a1519cf8b
-
SHA1
7aa237162fbffbfdb0b3a525e65c3a3e2554fe61
-
SHA256
5863913433ca1a0aff0ceb63ab3ba5ca4982659bca1b0b8af45a1f5be088d121
-
SHA512
ed66a459be4bc82b581ce754d6dbfd0a0fa374ba936e17eb715e054aea992fa8bb37c11f4456f19f5b7e36bb852badc3e25fd00a55196c1d766aa95538be13a9
-
SSDEEP
6144:D1sTA5l4k8ftRBljcnQBj7wKeA93xYb38KGZSAaWO9G5RSIDgsePXdoxPH+GzXc+:2lRbjN7jYVJ9SUIPe/iRH0SzZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 15fbf5c441a3a705ec430d6a1519cf8b_JaffaCakes118
Files
-
15fbf5c441a3a705ec430d6a1519cf8b_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 343KB - Virtual size: 343KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 362KB - Virtual size: 362KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ