Behavioral task
behavioral1
Sample
3ebad8c6610e39568bd905f313259913_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
3ebad8c6610e39568bd905f313259913_JaffaCakes118.dll
Resource
win10v2004-20240709-en
General
-
Target
3ebad8c6610e39568bd905f313259913_JaffaCakes118
-
Size
92KB
-
MD5
3ebad8c6610e39568bd905f313259913
-
SHA1
36e97ea76d8e6d7529f94549a28d7e482bb4708d
-
SHA256
3ca28179a395dd151b69247a4191b503c7a80e64eccf38527079a2c7825d1491
-
SHA512
96067bfdfa27a9b040feafb84f58cc80fe5c734ca489f2ba60d732031baf87af6a6391628cbd710457a7c2b9b3ab3ea4ffb4f2563bdfc7fdb0ca704c33c637c7
-
SSDEEP
1536:U0t01jGFVE3SSO6fTQ4dX0HUDnidw1mUbVz3pvUo1irx5EGF/B47WMw1YBpcyr1r:UYFVE3nNU4N00DiywiVz3iMiPX/eaMDx
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3ebad8c6610e39568bd905f313259913_JaffaCakes118
Files
-
3ebad8c6610e39568bd905f313259913_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
UPX0 Size: - Virtual size: 132KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE