Static task
static1
Behavioral task
behavioral1
Sample
34d24a4d19a53f184b24dfb9e9d74479_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
34d24a4d19a53f184b24dfb9e9d74479_JaffaCakes118.dll
Resource
win10v2004-20240709-en
General
-
Target
34d24a4d19a53f184b24dfb9e9d74479_JaffaCakes118
-
Size
54KB
-
MD5
34d24a4d19a53f184b24dfb9e9d74479
-
SHA1
9dd1d3759809439e2975e56e8d76ab4edc1bad69
-
SHA256
994d86c5a3b19394b6c8ca10d1e05e0ddbca7af8b4fad95e0c9b28b7340c0556
-
SHA512
aa67e15295e23fa427e8db3879281b2d904a97d009e36e8b80ad975bf8733aaa070ab2a717186974ebf5e098f71c7c504f89b566a2e30256e754b37cdca3c458
-
SSDEEP
768:8acskotYmzzYRe8C3e82x0KYDVkSUAyFK1PB9h6oLj/lq9u0wM9gV2TjGzGa+KC+:co2mzzYMxfKuuMyWZl+w0WzGuCCL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 34d24a4d19a53f184b24dfb9e9d74479_JaffaCakes118
Files
-
34d24a4d19a53f184b24dfb9e9d74479_JaffaCakes118.dll windows:5 windows x86 arch:x86
f372811452738e6fe7310db511d73972
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
shlwapi
StrCatChainW
UrlGetPartW
UrlCombineW
UrlHashW
UrlEscapeA
UrlGetLocationW
UrlUnescapeW
user32
GetDC
SendMessageA
MessageBeep
DialogBoxIndirectParamA
MessageBoxW
DispatchMessageW
TranslateMessage
advapi32
RegOpenKeyA
Sections
.text Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 37KB - Virtual size: 116KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 10KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.RR Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ