I:\dvmiQltl\DtIjtiyixwuzq\lJNwqsyIgqgc\xitFOExQPOy.pdb
Static task
static1
Behavioral task
behavioral1
Sample
4743fd88be5882b43a58f66b1d2c10b0_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
4743fd88be5882b43a58f66b1d2c10b0_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
4743fd88be5882b43a58f66b1d2c10b0_JaffaCakes118
-
Size
54KB
-
MD5
4743fd88be5882b43a58f66b1d2c10b0
-
SHA1
6a14898cc1655c7479e6f82f656deaaa4b53ec50
-
SHA256
3b441d911f9e4e4b3453d4bed8babcc5b60d4a2c59f105a56949538ddfa8b8fc
-
SHA512
0deb26c9c0f449d8dc3dd940e51f85f5814c26ee3f0fb3c09f4aa466688788cc20ecb7dd18cde8803d0c6f8e47373c90fbbcfef226f5a35ac17637273347ad23
-
SSDEEP
1536:izA4h7sJqwa9d2Yrebip1F8LfBoV65w5G5NZv/:iMQiCd29bip1FyZo0L5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4743fd88be5882b43a58f66b1d2c10b0_JaffaCakes118
Files
-
4743fd88be5882b43a58f66b1d2c10b0_JaffaCakes118.exe windows:5 windows x86 arch:x86
47bc38733ea33f73bb58cc5231785c0f
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
msvcrt
_controlfp
__set_app_type
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
_XcptFilter
_exit
_cexit
atol
__setusermatherr
vsprintf
__getmainargs
kernel32
GetModuleFileNameA
HeapReAlloc
GetThreadLocale
CreateNamedPipeA
GetModuleHandleA
OpenFile
SetCommState
GetNumberFormatA
LoadLibraryW
shlwapi
ord158
gdi32
GetCharWidth32W
CreateDCW
EndDoc
GetTextExtentPointA
GetTextCharsetInfo
RestoreDC
user32
SendMessageTimeoutA
GetDialogBaseUnits
DispatchMessageA
SetSysColors
wsprintfA
SetRect
GetKeyNameTextW
Exports
Exports
?CreateDlgMessage@@YGHPAXPADK|U
Sections
.text Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE