Static task
static1
Behavioral task
behavioral1
Sample
863bf30f533a9297a26439463ad811ca_JaffaCakes118.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
863bf30f533a9297a26439463ad811ca_JaffaCakes118.dll
Resource
win10v2004-20240508-en
General
-
Target
863bf30f533a9297a26439463ad811ca_JaffaCakes118
-
Size
40KB
-
MD5
863bf30f533a9297a26439463ad811ca
-
SHA1
821dcb7fd1fa7cc95cbabe2fff6995bbde4e1b45
-
SHA256
39a1c2d95e1ef71916f3cf939aa97efe7e84eee3e51f076f0a3aafd646607302
-
SHA512
f6fe6c4e3e48edbf93bc12d59ec761eed04b1b471b2270f95730a247885e4d66fbe8f6e68494e26e979a5c7117da82dd915e60db40a98a6bef5439cf0749fef3
-
SSDEEP
768:dTSbSRp7ref6sLamQoYOo5exUma+Sl4LxqYxi+:hDry6sLamQ5bPl4LxqM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 863bf30f533a9297a26439463ad811ca_JaffaCakes118
Files
-
863bf30f533a9297a26439463ad811ca_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.text Size: 79KB - Virtual size: 79KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 968B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ