C:\Users\Андрей\Desktop\zip\v\_ZipArchive140\packed.pdb
Static task
static1
Behavioral task
behavioral1
Sample
bfbee8319d6fe9777d3d29ac35bcdab4_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
bfbee8319d6fe9777d3d29ac35bcdab4_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
bfbee8319d6fe9777d3d29ac35bcdab4_JaffaCakes118
-
Size
1.2MB
-
MD5
bfbee8319d6fe9777d3d29ac35bcdab4
-
SHA1
d3df08470a11f6e2edbe22d8d5d9775ed7bac4cc
-
SHA256
18b79ff4a0e541732ac138a73f06ea57a9f897363ef00410af8bcdf6e392cb17
-
SHA512
7520647f2dc76336f0173cd6df37ebe44a2acf5837857c646807426e50758cec3081e7bb33c7c53af12b39da35c5d87439f09a09f968a7cc637f6ad3c7fb081b
-
SSDEEP
24576:+SWDW915MLW+wsDaQw6DDz3qRyPnmGfrnvVUKueY8RmneWtJzfH:+SfzyLasY6DwOBfrnvV7UeWthH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bfbee8319d6fe9777d3d29ac35bcdab4_JaffaCakes118
Files
-
bfbee8319d6fe9777d3d29ac35bcdab4_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 234KB - Virtual size: 234KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ