C:\Users\Adrian\Documents\Visual Studio 11\Projects\DataProtector\Project1\CS\obj\x86\Release\Project1.pdb
Static task
static1
Behavioral task
behavioral1
Sample
7d6816ca8761c9611542c326105efbbf_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
7d6816ca8761c9611542c326105efbbf_JaffaCakes118
-
Size
708KB
-
MD5
7d6816ca8761c9611542c326105efbbf
-
SHA1
8ad553cd6ee105cf6050b8017ecf88319fc4ff8c
-
SHA256
f37dc2aab4817b85c6b2caf9c5ed0790d4613fd9248207c7c37270c13aafed4c
-
SHA512
3d62ec55922034b43828ad2232b89b72db0a08af7bcff1047ed27c6174f18ddb6e76f7433584e02e548abcdd2eb77d143ef8d3dce744fc18d667a2d85764b853
-
SSDEEP
12288:GkgiBS7Q7MKrOtxf+zbp6+rZg5vqxsIM3Ep5DPEL1Corj5pRXQhYuRv86:ZV8U7MVxIFbZgpqfR5o3j5PACyj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 7d6816ca8761c9611542c326105efbbf_JaffaCakes118
Files
-
7d6816ca8761c9611542c326105efbbf_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 46KB - Virtual size: 45KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 661KB - Virtual size: 660KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ