Static task
static1
Behavioral task
behavioral1
Sample
1b0898055f50540d115d5c54afb0c119_JaffaCakes118.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
1b0898055f50540d115d5c54afb0c119_JaffaCakes118.dll
Resource
win10v2004-20240508-en
General
-
Target
1b0898055f50540d115d5c54afb0c119_JaffaCakes118
-
Size
261KB
-
MD5
1b0898055f50540d115d5c54afb0c119
-
SHA1
86371ead46addeeb3b63aa54ed05bbd22e5faac3
-
SHA256
c2ab9df13c16c44a070b7229cf9e7d671f16dd02e56b8ba9d7a92cc68f458a3e
-
SHA512
415a4cd3e9dc49af5910f543bc0c44e105af5616ba07de48f44dc7a64e71cc94e843bc54785c27bf17c8df861872cbe40bac34593ee2d06d93a5808dc02b9755
-
SSDEEP
6144:eyumtsydvTxk3zQ4kqrI9Yb4glyaiED1frpvN/Q:e5GsGFf4hI9Yb4taiEJr/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1b0898055f50540d115d5c54afb0c119_JaffaCakes118
Files
-
1b0898055f50540d115d5c54afb0c119_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
Sections
�d*&0 Size: - Virtual size: 700KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
�d*&1 Size: 260KB - Virtual size: 260KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
�d*&2 Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE