D:\Users\ismetsen\Documents\Visual Studio 2015\Projects\SinerjiIcra\SinerjiDegisim\obj\Debug\SinerjiDegisim.pdb
Overview
overview
3Static
static
3SinerjiDataNEW.dll
windows7-x64
3SinerjiDataNEW.dll
windows10-2004-x64
3SinerjiDegisim.exe
windows7-x64
3SinerjiDegisim.exe
windows10-2004-x64
3SinerjiGun...EW.exe
windows7-x64
3SinerjiGun...EW.exe
windows10-2004-x64
3SinerjiIcraNEW.exe
windows7-x64
3SinerjiIcraNEW.exe
windows10-2004-x64
3SinerjiIzgaraNEW.dll
windows7-x64
3SinerjiIzgaraNEW.dll
windows10-2004-x64
3SinerjiSecNEW.dll
windows7-x64
3SinerjiSecNEW.dll
windows10-2004-x64
3SinerjiYed...EW.exe
windows7-x64
3SinerjiYed...EW.exe
windows10-2004-x64
3Static task
static1
Behavioral task
behavioral1
Sample
SinerjiDataNEW.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
SinerjiDataNEW.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
SinerjiDegisim.exe
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
SinerjiDegisim.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
SinerjiGuncelleNEW.exe
Resource
win7-20240704-en
Behavioral task
behavioral6
Sample
SinerjiGuncelleNEW.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
SinerjiIcraNEW.exe
Resource
win7-20240903-en
Behavioral task
behavioral8
Sample
SinerjiIcraNEW.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
SinerjiIzgaraNEW.dll
Resource
win7-20240903-en
Behavioral task
behavioral10
Sample
SinerjiIzgaraNEW.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
SinerjiSecNEW.dll
Resource
win7-20240903-en
Behavioral task
behavioral12
Sample
SinerjiSecNEW.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
SinerjiYedeklemeNEW.exe
Resource
win7-20240729-en
Behavioral task
behavioral14
Sample
SinerjiYedeklemeNEW.exe
Resource
win10v2004-20240802-en
General
-
Target
cf074f9c58ee8c296b36b8c5f8d15a42_JaffaCakes118
-
Size
4.9MB
-
MD5
cf074f9c58ee8c296b36b8c5f8d15a42
-
SHA1
60fdaf95330b20bcbaa35b0288b7d5fa7d9fe442
-
SHA256
ecd3f29286d19b5e52a9e09b1e563e30653fbf7c85f8688176700b2635282b7a
-
SHA512
98865a970ba3d1ecf7ea6665336e2edc68fa48a2006d5c7c971504cd750cb234b3ca201d9cba790f24d32a903b9fc6f141dc938ae6eeba96a85ceb8127642bb8
-
SSDEEP
98304:HHkt1X2VhJGKAszxqHsAoiCfbhS0aMx7w1AtmNc50UWJQB9nyb/:nkfGVhJGGzxqHs9iCfdevGLxE/
Malware Config
Signatures
-
Unsigned PE 7 IoCs
Checks for missing Authenticode signature.
resource unpack001/SinerjiDataNEW.dll unpack001/SinerjiDegisim.exe unpack001/SinerjiGuncelleNEW.exe unpack001/SinerjiIcraNEW.exe unpack001/SinerjiIzgaraNEW.dll unpack001/SinerjiSecNEW.dll unpack001/SinerjiYedeklemeNEW.exe
Files
-
cf074f9c58ee8c296b36b8c5f8d15a42_JaffaCakes118.zip
-
SinerjiDataNEW.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 860B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SinerjiDegisim.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SinerjiGuncelleNEW.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 305KB - Virtual size: 305KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 160KB - Virtual size: 159KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SinerjiIcraNEW.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 9.2MB - Virtual size: 9.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 363KB - Virtual size: 362KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SinerjiIzgaraNEW.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 724KB - Virtual size: 723KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 876B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SinerjiSecNEW.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 42KB - Virtual size: 42KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 788B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SinerjiYedeklemeNEW.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 798KB - Virtual size: 798KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 113KB - Virtual size: 113KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ