ie4uinit.pdb
Static task
static1
Behavioral task
behavioral1
Sample
72403b422d27968d5f8527957a96f26c_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
72403b422d27968d5f8527957a96f26c_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
72403b422d27968d5f8527957a96f26c_JaffaCakes118
-
Size
343KB
-
MD5
72403b422d27968d5f8527957a96f26c
-
SHA1
e4bcd74f769eae0afffc43c2a5e3668263f2011f
-
SHA256
551fa0e528896ee90ad7a9f568e789b22f593a5c4b8d198c7ac613a83e2bfaea
-
SHA512
36f83a14f2e639d5f78188b9afc37922b0cac59bda7bfd8717637b01d0ca7c329e5720281a1b3a0547a22e95d3613ad5e2a6a39d8a091aa5d5e899cb70340ed7
-
SSDEEP
6144:FDInYcKUltS/gHC+tlM2YcATrNHp+uE+18MZrqj8JM+vUkunXT7qCg55N:FDXUlE4iqMrX+w1UwMAnunqdN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 72403b422d27968d5f8527957a96f26c_JaffaCakes118
Files
-
72403b422d27968d5f8527957a96f26c_JaffaCakes118.exe windows:6 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Sections
.text Size: 150KB - Virtual size: 150KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 15KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.yvs Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE