scan
Behavioral task
behavioral1
Sample
6ae17a6bf89ad71585e681f4d7321c2a_JaffaCakes118.dll
Resource
win7-20240708-en
General
-
Target
6ae17a6bf89ad71585e681f4d7321c2a_JaffaCakes118
-
Size
15KB
-
MD5
6ae17a6bf89ad71585e681f4d7321c2a
-
SHA1
5ef9976ecde43296e1abfd0910c978c94cc8efd8
-
SHA256
2f73b86ef9b5d7c5254bfb033dbe4ea58925cfc86487620e17ddef4ad96fd6f1
-
SHA512
a51cc36e8424007a19b6d7a1a5f857446f12bd381039220a8a6010b2c9ff0bd87d963c2ecca41f77cbb9d054f4b80d05a8897f01ee99589d0e34f6dc579ce1f6
-
SSDEEP
384:3WkKcpiOrpbRwygD87wIDOaenqQzF37bjfQUJhz:3G69bRoD8p7u97XQU/
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6ae17a6bf89ad71585e681f4d7321c2a_JaffaCakes118
Files
-
6ae17a6bf89ad71585e681f4d7321c2a_JaffaCakes118.dll windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Exports
Exports
Sections
UPX0 Size: - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE