c:\Users\Carol Megan Broad\AppData\Local\Temp\Temporary ASP.NET Files\quickstart\42d2f831\a3e9f23\App_Web_dbs1djvz.pdb
Static task
static1
Behavioral task
behavioral1
Sample
2c7e35b45edb24e5d7e6261a5d6b06d5_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2c7e35b45edb24e5d7e6261a5d6b06d5_JaffaCakes118.dll
Resource
win10v2004-20240704-en
General
-
Target
2c7e35b45edb24e5d7e6261a5d6b06d5_JaffaCakes118
-
Size
64KB
-
MD5
2c7e35b45edb24e5d7e6261a5d6b06d5
-
SHA1
e4d043c0431e85dd1a7c129b6aa9facafc973742
-
SHA256
199f5f0abb4d4d555dd567fd5052765d9761bf15815fc747b52fc42a00e8a672
-
SHA512
d3d7c240568370b92e7d3d1770b33a6065f2168b298b6daf704eea9f5ee5112197d9ee3d5bcf486227f7e978173f6e0dc1b0487435d224107821e68d4b3f8a44
-
SSDEEP
768:l4pZZULnP7h+30mmMByrBX3f43ZPeAj/rdr1Q/Q68:mJEhM6AnFWI68
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2c7e35b45edb24e5d7e6261a5d6b06d5_JaffaCakes118
Files
-
2c7e35b45edb24e5d7e6261a5d6b06d5_JaffaCakes118.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 52KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ