Static task
static1
Behavioral task
behavioral1
Sample
vbre/vbre.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
vbre/vbre.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
vbre/河源下载站-cngr.cn.url
Resource
win7-20240708-en
Behavioral task
behavioral4
Sample
vbre/河源下载站-cngr.cn.url
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
vbre/淘宝热卖.url
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
vbre/淘宝热卖.url
Resource
win10v2004-20240802-en
General
-
Target
11af24674caed443771e6069dcab320f_JaffaCakes118
-
Size
1.5MB
-
MD5
11af24674caed443771e6069dcab320f
-
SHA1
1f5283f791ed9e74fc0ea9c2376b534c40e45f27
-
SHA256
e814c0095e1dd0e2451be2f5e5ab6fbc62331a9d1d40621f23b33b35c970917f
-
SHA512
8bbce0e86019d4e5b4257730186c78e07fa099bdbfbd2d488d02b26189bd4db289f02ba6d1b2ae458c527aea677fa2706d569b28c759de943d7aa86f5f4e3265
-
SSDEEP
24576:e3G8uaip/oiYdDjdxrnntlHzXUZ6nu9OKnfefKay8jdHKAgdohd:e3/uaipbYtDtlTK6nIOvSSdq5id
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/vbre/vbre.exe
Files
-
11af24674caed443771e6069dcab320f_JaffaCakes118.rar
-
vbre/vbre.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
vbre/河源下载站-cngr.cn.url.url
-
vbre/淘宝热卖.url.url