c:\xampp\htdocs\crypting\GuydBWqWX0d55a0S\Onp1v8uK0nRKEACh.pdb
Static task
static1
Behavioral task
behavioral1
Sample
e54a9db2b6629d6d55e0220851e62ed4_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
e54a9db2b6629d6d55e0220851e62ed4_JaffaCakes118
-
Size
557KB
-
MD5
e54a9db2b6629d6d55e0220851e62ed4
-
SHA1
7c516644bc484dc19ffeb7e0662dae1b76feaec7
-
SHA256
0844761b0a4a73440e32f2d2f553f95c03ee0cdbaaaca00a054251fa70cf5598
-
SHA512
4a8508fadb8e4f852efede5d5f7a660b461b65fdd6abf84993e17b0376ec93cfa34a21362cbf11e0fb8f5f8010e3afab61baae1b02219f5560e28fb97aa3473b
-
SSDEEP
12288:OkJZ54DJW8rDJW8uAvuD8+e50C2TYJzIW/PyGMz9qkzMi6JjQ3t9aMAA5rrTY95s:JJZ54DJW8rDJW8uAvuD8+e50C2TYJzIR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e54a9db2b6629d6d55e0220851e62ed4_JaffaCakes118
Files
-
e54a9db2b6629d6d55e0220851e62ed4_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 396KB - Virtual size: 395KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 160KB - Virtual size: 159KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ