C:\Dokumente und Einstellungen\waldemars\Desktop\LastWeb\DummyTemp\WakeUp\obj\Release\WakeUp.pdb
Static task
static1
Behavioral task
behavioral1
Sample
e1dfed2187ba58a353158e63d49ed9a2_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
e1dfed2187ba58a353158e63d49ed9a2_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
e1dfed2187ba58a353158e63d49ed9a2_JaffaCakes118
-
Size
28KB
-
MD5
e1dfed2187ba58a353158e63d49ed9a2
-
SHA1
1548d5d75e29f39285c7b64c9d476a02b6072219
-
SHA256
dac329c2bcc7bc3c3d76a3a55e25106c8f4bb1f2b2631591520d46d36e28fe01
-
SHA512
47f98a85b3b3897baaed1fe8063dc42d9c7599a79665c9bf017d93eaec3ab3bd883fc3fa310fe45710debd5da1c4a7874aeeb862cd950ff8a78dd8bf0ff9142f
-
SSDEEP
384:Vg9H/yo0u2ay8fLCULO45uQfrdep8/LKP2:Vg9H/b09T4CYyP2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e1dfed2187ba58a353158e63d49ed9a2_JaffaCakes118
Files
-
e1dfed2187ba58a353158e63d49ed9a2_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 4KB - Virtual size: 149B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ