Static task
static1
Behavioral task
behavioral1
Sample
19b44416a43ab73cb58ec63311ce5b89_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
19b44416a43ab73cb58ec63311ce5b89_JaffaCakes118
-
Size
539KB
-
MD5
19b44416a43ab73cb58ec63311ce5b89
-
SHA1
0ee47624d450be6b6c4cff14fcb57ab85024296e
-
SHA256
4765b693a5f0024c84d332e633fb35b8d37891fb93e6a2bf615652c82aa7fdde
-
SHA512
726e9b89ea59ac686d1e0fbed60022327325c10e3c86039814c96132b3e3a6f0f997bcb4ed6f2b80f471fc01dc1a7909f1f26f7247a54071551ac7b4f739f31a
-
SSDEEP
12288:hYfTUUNUGwARE9W41abqBSzaPy4+s4gXxK39JYyEBovqLBtEy:h6vUGwARE9WAbyF2xC3MBovqLHEy
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 19b44416a43ab73cb58ec63311ce5b89_JaffaCakes118
Files
-
19b44416a43ab73cb58ec63311ce5b89_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.rsrc Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 527KB - Virtual size: 527KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ