C:\Users\Administrator\Desktop\Client\Temp\kDRrSncrLb\src\obj\x86\Debug\SafeCompressedStackHand.pdb
Static task
static1
Behavioral task
behavioral1
Sample
52df255680f887017591202b52a8efe8_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
52df255680f887017591202b52a8efe8_JaffaCakes118
-
Size
1.1MB
-
MD5
52df255680f887017591202b52a8efe8
-
SHA1
f0847dcf66ba729232861a546dde8c5f670afc06
-
SHA256
f332af6b1d5bdf611ccca13b210a751c550cb15fc007521eae8f3c837a162f05
-
SHA512
9afde7873c3e3a37486b679e423208b95b89f4ea7711162df9e5902754e5e59ddb7b53cfb67429dbe28aef79646e7ccfe93488de23a5c4a77e212d7e0a216873
-
SSDEEP
12288:w9hzS7ZQdQsvgcFsd9IG5gK7surUZyOn6hI5uNxtLtBvIIkQ:wXzS7uqsxPKgssurUZN6hI5uNjLLQ/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 52df255680f887017591202b52a8efe8_JaffaCakes118
Files
-
52df255680f887017591202b52a8efe8_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 1011KB - Virtual size: 1010KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 75KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ