Static task
static1
Behavioral task
behavioral1
Sample
6a584525424ffae3518704811d5ae35c_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
6a584525424ffae3518704811d5ae35c_JaffaCakes118.dll
Resource
win10v2004-20240709-en
General
-
Target
6a584525424ffae3518704811d5ae35c_JaffaCakes118
-
Size
54KB
-
MD5
6a584525424ffae3518704811d5ae35c
-
SHA1
b4b6f89f2bc9f7039fc77650f817fed46662d461
-
SHA256
e6a31c41505e247e1f20dda11fe961fbc384f234a0d5a30d2dfcdee375038d4a
-
SHA512
99ba78f06638ef1fa877e966c4d35b7d06946f7c846acacbe61e6c59a36ad9f1895228a640e22da07181879a7de36bbd00cad8e43d8c19c54e3816fe30533b83
-
SSDEEP
1536:P3i5qBQbQtuZY+7BeQvcDEaSJyA1Hx6lJui:x6xL9vcDEpyA1Hx6lJui
Malware Config
Signatures
Files
-
6a584525424ffae3518704811d5ae35c_JaffaCakes118.dll windows:4 windows x86 arch:x86
Code Sign
19:b1:72:46:d2:9e:bc:d5:65:30:64:6f:01:35:64:1f:d9:23:99:14Signer
Actual PE Digest19:b1:72:46:d2:9e:bc:d5:65:30:64:6f:01:35:64:1f:d9:23:99:14Digest Algorithmsha1PE Digest MatchestrueHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
Exports
Exports
ServiceMain
Sections
CODE Size: 40KB - Virtual size: 39KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 2KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 71B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ