Static task
static1
Behavioral task
behavioral1
Sample
QUALITY SCALES CONTROL PO , PDF.exe
Resource
win7-20240729-en
General
-
Target
JaffaCakes118_c7aeae267b8235729102a37b3851fbb9484b4ba10b1135ecc3cf644004690203
-
Size
416KB
-
MD5
bb5b77e54d846bcd61d1aa1bb3c39999
-
SHA1
3a191b551a3649addff295c4a6fdd01f73b34533
-
SHA256
c7aeae267b8235729102a37b3851fbb9484b4ba10b1135ecc3cf644004690203
-
SHA512
eee02dec8acebb8d7aaf93bfe9059abeb3478692244f6e899163e7ec24a91cb81d660dede216bca7d03f516566d643597a1b0754dc9dd9a54d7abbd0a5e505bc
-
SSDEEP
6144:BJ+8hj0PHsNM28wPEMqZzgYwe0VzZ2VGJhYHvmM6v20nXMQq:28hj0oMoEMwPozZ2VCSufBXM7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/QUALITY SCALES CONTROL PO , PDF.exe
Files
-
JaffaCakes118_c7aeae267b8235729102a37b3851fbb9484b4ba10b1135ecc3cf644004690203.zip
Password: infected
-
QUALITY SCALES CONTROL PO , PDF.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 510KB - Virtual size: 509KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ