Static task
static1
Behavioral task
behavioral1
Sample
DHL AWB 60073535404.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
DHL AWB 60073535404.exe
Resource
win10v2004-20240508-en
General
-
Target
9106cde0add43cbbcf2bf1e7e4ea92dc_JaffaCakes118
-
Size
262KB
-
MD5
9106cde0add43cbbcf2bf1e7e4ea92dc
-
SHA1
afbfa40da8f3d78b518d6976127d718cfa27eed7
-
SHA256
e481549369680216f5d2f704a575bc39df7be4c3ec9f6c610a5a85ebc4f80169
-
SHA512
8ba5068b6654aa28cc6420834cdb3c5f016799956ffd1b1113638db38ecea1d630819b88e32e9dc7574b6e88528e20fc342551fe849793f95631cf1bc8e71c9e
-
SSDEEP
6144:2SThiapVQjfKAXGi60XxYjeEBdFb7We0bGvQ4ttUo6J1Q:XMaQjfK8jFSeajvQ4ttUHW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/DHL AWB 60073535404.exe
Files
-
9106cde0add43cbbcf2bf1e7e4ea92dc_JaffaCakes118.zip
-
DHL AWB 60073535404.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 605KB - Virtual size: 604KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ