Static task
static1
Behavioral task
behavioral1
Sample
1d2da8ba449472e38f9bafe3c51b3a77_JaffaCakes118.exe
Resource
win7-20240419-en
General
-
Target
1d2da8ba449472e38f9bafe3c51b3a77_JaffaCakes118
-
Size
836KB
-
MD5
1d2da8ba449472e38f9bafe3c51b3a77
-
SHA1
50c6fb6f1116b770b5a33c0421bdb05211010f5e
-
SHA256
f7bac174142cbb02fff245e37e2d5c8caf091474e98f0cbdd37e17a737600a15
-
SHA512
a2234ce252dbd0754b3001cd2f1f001d8a84f86815a3f781fe5b702572798ef43fae1cfdac9e6d35f97ee6ef78c9d0a960a89e5510ead7f97f95ea2f8b81dbd0
-
SSDEEP
12288:XlZjUKVV+RzTtcS3OF2MjksXIX+7+XlR8XmasMmis96P6bmOkkWps0LRendK0zhc:0RtG27UfiePSoxdWJI/er2SspUETV5n
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 1d2da8ba449472e38f9bafe3c51b3a77_JaffaCakes118
Files
-
1d2da8ba449472e38f9bafe3c51b3a77_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 800KB - Virtual size: 798KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 28KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ