Static task
static1
Behavioral task
behavioral1
Sample
47cac09f83230dc52a953eb0e6728d74_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
47cac09f83230dc52a953eb0e6728d74_JaffaCakes118.dll
Resource
win10v2004-20240709-en
General
-
Target
47cac09f83230dc52a953eb0e6728d74_JaffaCakes118
-
Size
157KB
-
MD5
47cac09f83230dc52a953eb0e6728d74
-
SHA1
6ba7d25084a9b89b3e9e878080b7a9d4535819cb
-
SHA256
89846018b0b52dec748ab9d1f01cde5f237e77cdbf5baee7797319ad4476be18
-
SHA512
8c3745550b55651041338345795eec6cd60c39f84f6ace841fc7e75e5a48ee1f6c7204b555d18aefe03c139cfa98df556743e2b197f8595cec3c185f01e32017
-
SSDEEP
3072:UWzBQ0SQfrE5/CbMDOmJQJzeyj3zRLJHAi76jdOJyKpoq:7Q3wrLbMDOMQjjj9JB7wd8yW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 47cac09f83230dc52a953eb0e6728d74_JaffaCakes118
Files
-
47cac09f83230dc52a953eb0e6728d74_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
nVybJUFV Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
Srpgfxha Size: 512B - Virtual size: 280B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
gjlNjBwO Size: - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xRLjfMph Size: 74KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
HBdSYnQk Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TPqcnsAc Size: 512B - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ