U:\EOdkgu\XXxgjjm\gjtpbe\YwxuiU\mrddHe.pdb
Static task
static1
Behavioral task
behavioral1
Sample
88e34bc967d5a12aff657be86e880529_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
88e34bc967d5a12aff657be86e880529_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
88e34bc967d5a12aff657be86e880529_JaffaCakes118
-
Size
104KB
-
MD5
88e34bc967d5a12aff657be86e880529
-
SHA1
9fa9c42abcc6769ed673811725619701a9b1be42
-
SHA256
462332f6e66255f284fd9f4c9e4be8d6912829f1d539abc35f414a1799b7cb4d
-
SHA512
81cc00af83cda098e5516410dc24c8082883d6fee72b0f1a0334f8a18d2791a214a3fdc2cddfef4b50620cef8685ff4ff88d3a96a214dacc67efe63084bf550a
-
SSDEEP
3072:iWWk4EZ/Zqu0S+g5faxpA82F64kW3AZBv2P2iHqf:M5EGu0bqG2Fj2ZdliKf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 88e34bc967d5a12aff657be86e880529_JaffaCakes118
Files
-
88e34bc967d5a12aff657be86e880529_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Sections
.text Size: 52KB - Virtual size: 208KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 33KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idat Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.pacdat Size: 18KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 17KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ