C:\Users\Adrian1980\Documents\Visual Studio 2008\Projects\e.m.p.t.y\e.m.p.t.y\obj\Release\k348fh38.pdb
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_1eb486fa6291baa043d8558201f6a3aa.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_1eb486fa6291baa043d8558201f6a3aa.exe
Resource
win10v2004-20241007-en
General
-
Target
JaffaCakes118_1eb486fa6291baa043d8558201f6a3aa
-
Size
219KB
-
MD5
1eb486fa6291baa043d8558201f6a3aa
-
SHA1
b5da2ab73ed9c1fd7b19925b4ed5475500139a71
-
SHA256
e27926aab5635abff5cc672148cd58c991bbf9867e51ac49d0fadd22afe7242c
-
SHA512
aa38a937c2c16b344025e6360fe993d73b9388902abf62df2d7d675cdb86d30b5105b2c3078dcf844438f35d1a06610bbcfa578b3abd1abb3e78026a9ae27ab4
-
SSDEEP
6144:Md8pFzq0dWhT0DWo6PJVslRNxHibgzym:o8po9JGlRNpw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource JaffaCakes118_1eb486fa6291baa043d8558201f6a3aa
Files
-
JaffaCakes118_1eb486fa6291baa043d8558201f6a3aa.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 52KB - Virtual size: 52KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 155B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 164KB - Virtual size: 164KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ