c:\Users\user\Documents\Visual Studio 2013\Projects\Office\Office\obj\Debug\Office.pdb
Static task
static1
Behavioral task
behavioral1
Sample
04487fea5794d373da98f32d2a87778b_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
04487fea5794d373da98f32d2a87778b_JaffaCakes118
-
Size
69KB
-
MD5
04487fea5794d373da98f32d2a87778b
-
SHA1
66088fe9dcf19108a12d7e5a0a61796ba2c5a886
-
SHA256
48114ea6f8616e182b6f19ce8861a5d6014ef0c1d4377355b642e6a3355a4ed8
-
SHA512
3c2f55b7e1adf69831cc7ecbcb053b9f7a82761cfcbc632358071b6ea3925a0c1c1f892a0d96646db6305b62f19b52db58372947bb68abb8c323822d30a41cb8
-
SSDEEP
768:mXzzabcv30NuMkNNe1ZV6ieZopVqYU/9++WdoOkG5OoySP9SpcL1GbNg2sZ9K4pP:bjKaM/g+WuVpcL1GbNg2sZ9WmbF3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 04487fea5794d373da98f32d2a87778b_JaffaCakes118
Files
-
04487fea5794d373da98f32d2a87778b_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 66KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ