Static task
static1
Behavioral task
behavioral1
Sample
5a745ffdacca814bee8739c3f2838c1b_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
5a745ffdacca814bee8739c3f2838c1b_JaffaCakes118.dll
Resource
win10v2004-20240709-en
General
-
Target
5a745ffdacca814bee8739c3f2838c1b_JaffaCakes118
-
Size
340KB
-
MD5
5a745ffdacca814bee8739c3f2838c1b
-
SHA1
1eab83c29ee836316dd05a8a96b64f8cca7d8e9a
-
SHA256
8def4ef8a5f96c04de1ceb74481a043b835b9b19e89e7d86a610698c6a40392d
-
SHA512
290a8a17ac8cd8aafee911c7e2dfd4a982fab6db0b1870a0843387f4bafe4a5c075865dde242b608bbac9e9ce7293d1d7a48c5830a0f673823a745b2098dbd6f
-
SSDEEP
3072:JkCuXRPRxAn4ew/0qbzyD8EesZByg+yqZPAMKOm6mAs2j3V4ONjRjJyYbq8pV1Rh:ryqXwVbzyD8GQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5a745ffdacca814bee8739c3f2838c1b_JaffaCakes118
Files
-
5a745ffdacca814bee8739c3f2838c1b_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.text Size: 48KB - Virtual size: 47KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ