EventAttribu.pdb
Static task
static1
Behavioral task
behavioral1
Sample
7890ee8b506470d111dffe7df8b06093_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
7890ee8b506470d111dffe7df8b06093_JaffaCakes118
-
Size
352KB
-
MD5
7890ee8b506470d111dffe7df8b06093
-
SHA1
83a5147df1ffb90c75a5a8686fec80b8b22cbe9c
-
SHA256
5270bc9905eafb0b4174ba7ab447db19d7f7dc3adbc5b6a2a747fda70a63849e
-
SHA512
f342f11a762555939b242a0416e6ec7c0a3e588a14325e152309530ec9354fc08b1b6da5d5027d7df03411b526071d25e8a56862f6f0ca44adaba3645923b07e
-
SSDEEP
6144:A0zAuMkhBm0/dqaE4jxmG1J3OsKPyGBNzpZeQkX67P0FRUrJU6fnLFzdVl8R:y9SBnq9C1bOsdGTKQb7PcRYXfLToR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 7890ee8b506470d111dffe7df8b06093_JaffaCakes118
Files
-
7890ee8b506470d111dffe7df8b06093_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 349KB - Virtual size: 349KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ