C:\Users\Adrian1980\Documents\Visual Studio 2008\Projects\e.m.p.t.y\e.m.p.t.y\obj\Release\GvXFOgLHr.pdb
Static task
static1
Behavioral task
behavioral1
Sample
74346d8e7e75e8367290cd346e67b8bf_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
74346d8e7e75e8367290cd346e67b8bf_JaffaCakes118
-
Size
328KB
-
MD5
74346d8e7e75e8367290cd346e67b8bf
-
SHA1
1f1969777ca8670d9326d18fcf82c70dd92cb596
-
SHA256
0da389bd4830a05711b5eb98b1426369895ca4f04c1f2be10849f86892ddc561
-
SHA512
00e27a3d274f24bc1fbd44fa70b7f0ddb9cd98bfa1f90d4ace94513494095a69f8b694c64e267a920b5d659167c332511e1b4c28254e665c7dc2e357fb8ca946
-
SSDEEP
6144:LU5B0NXJSg1vR5hSymurx/m20GK1sGC6vGx6aszh9dxhh6x4:MO5SIDmqdm2/AC65aMhFH84
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 74346d8e7e75e8367290cd346e67b8bf_JaffaCakes118
Files
-
74346d8e7e75e8367290cd346e67b8bf_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 53KB - Virtual size: 53KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 156B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 272KB - Virtual size: 272KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ