C:\Users\macpr\Desktop\Roasting File Binder 2.0\Stub\Stub\obj\Release\Stub.pdb
Static task
static1
Behavioral task
behavioral1
Sample
fd2307bb1dc001cc2f57c6e8456830e4_JaffaCakes118.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
fd2307bb1dc001cc2f57c6e8456830e4_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
fd2307bb1dc001cc2f57c6e8456830e4_JaffaCakes118
-
Size
4.9MB
-
MD5
fd2307bb1dc001cc2f57c6e8456830e4
-
SHA1
38df5464e7835fc25e998db3f309f612c700576e
-
SHA256
95df308b52520264aa64cdb80e0cd936c3dd085f9a4c67a1139910195e53a084
-
SHA512
ba70336ef566590f5ee7bf62f54d2be263053c94dcae97fe8db743601e9b28fe5bf524930a7c37c9d168be37ec70c4f8e0c245dd3f79d4db83518416cd1dfdfd
-
SSDEEP
98304:VPGh8a1eGf1XxfBdb1AaOdSPc18d0OJBPvFVvNO2OhTa39+jdw9VdQ5rzqOaAnDC:ZGh8ajf1XHF1AaOdIueFVvs2cTOcjyGw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fd2307bb1dc001cc2f57c6e8456830e4_JaffaCakes118
Files
-
fd2307bb1dc001cc2f57c6e8456830e4_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4.9MB - Virtual size: 4.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ