Static task
static1
Behavioral task
behavioral1
Sample
hrd2.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
hrd2.exe
Resource
win10v2004-20240709-en
General
-
Target
6a05b563baca96520c6229c95f4b546d_JaffaCakes118
-
Size
475KB
-
MD5
6a05b563baca96520c6229c95f4b546d
-
SHA1
2f05204237396cf9d938de2d01b5a9c53fbdc80d
-
SHA256
b0d29d881c492d8ae80d01a2e87284ebe1b83d7a61f20dfc24486a0e5d9fff0c
-
SHA512
ce82675d0e5e43e9c9617e0abb24435d92bd7b6b4750c1ea808d4d928da4019b76a627d80e169399878f3de0295a3cc64943a244e4da9e0671f2c37c437a262b
-
SSDEEP
12288:95M0SKr4OBOy/Lg31MGQth0csZKx9EMIGq3bhsKn:wk3L/LTGQcbcrZ5qu6
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/hrd2.exe
Files
-
6a05b563baca96520c6229c95f4b546d_JaffaCakes118.rar
-
hrd2.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
MEW Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
�uۊ�� Size: 478KB - Virtual size: 536KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
下载说明.htm.html .js polyglot