C:\Users\Zac\Documents\No Strings Attached\ZeroTouchUI\obj\x86\Debug\ZeroTouchUI.pdb
Static task
static1
Behavioral task
behavioral1
Sample
aab18c12c23b3860ecaaf7ce7f2aa73b_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
aab18c12c23b3860ecaaf7ce7f2aa73b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
aab18c12c23b3860ecaaf7ce7f2aa73b_JaffaCakes118
-
Size
28KB
-
MD5
aab18c12c23b3860ecaaf7ce7f2aa73b
-
SHA1
55e745289606ae3818b8f91d2b994a0d6d02ede5
-
SHA256
50ae7ba7efe5194067883ba3c51254ae13a3d6c69bffb87792ed44dfd78cd58c
-
SHA512
67d199c6a52c431653faa39d392eca311d9deea09b687dab3c13bb2c22802f84e88bbe6dae5e6f854ad34a6103ba12de8f6d3aebd5936c3e728dcbc006a2d20c
-
SSDEEP
768:ev/AfgElQD2qNeu/IrlD1wwwiho8a4PXgKt3+L:joElQD22lgrlD1wwJa4RO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource aab18c12c23b3860ecaaf7ce7f2aa73b_JaffaCakes118
Files
-
aab18c12c23b3860ecaaf7ce7f2aa73b_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 25KB - Virtual size: 25KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ