C:\Users\USER\Documents\Visual Studio 2010\Projects\GDCjwr59BJGOX0OydWQg\GDCjwr59BJGOX0OydWQg\obj\x86\Release\GDCjwr59BJGOX0OydWQg.pdb
Static task
static1
Behavioral task
behavioral1
Sample
8e633f7e0ac69398976ef31344512c06_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
8e633f7e0ac69398976ef31344512c06_JaffaCakes118
-
Size
1.6MB
-
MD5
8e633f7e0ac69398976ef31344512c06
-
SHA1
8ef2a2101d1484c73576e6fd85cd947e4e979e0e
-
SHA256
598fa5921807adfac1d6c0d5157edcf32aaa69f472c137e930d2b793a3245445
-
SHA512
e690aa963e199ed1374ffb9b52aed8a99db6c70235b9c552d3eb55334c09e3012211ded7597dd0a3e73d22fde6204b3dbadfe45b010456b6d349fc5c8c374cf5
-
SSDEEP
24576:o6wUVWZWGJktFYx1rCwQGjEUJXQZCjFLhiW:WUVWZJJktKx1GJGfPiW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8e633f7e0ac69398976ef31344512c06_JaffaCakes118
Files
-
8e633f7e0ac69398976ef31344512c06_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ