Static task
static1
Behavioral task
behavioral1
Sample
971a64e11f42e43e0cfa1a544c388019_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
971a64e11f42e43e0cfa1a544c388019_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
971a64e11f42e43e0cfa1a544c388019_JaffaCakes118
-
Size
25KB
-
MD5
971a64e11f42e43e0cfa1a544c388019
-
SHA1
aab323f83efefd8d3303643820c51476010b2eeb
-
SHA256
af5705bd4701cbfcceb24b195c4bda133f24ea21c852c7b4cc96ffc45b7daf93
-
SHA512
a29591af5a4bf738bc02675b7fdae6b5703c3ec4de03ef7b2e28a69037b736fb84378cc049db5285ebd8e52aa2ddf092c11c0339da58d71a7fee8a35e74594db
-
SSDEEP
768:YyDTZlYKYJGN+v99UEZTn0euOZqeSEtwVOnmw:YY034o15ZTn0AqeSEtVm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 971a64e11f42e43e0cfa1a544c388019_JaffaCakes118
Files
-
971a64e11f42e43e0cfa1a544c388019_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
oao Size: - Virtual size: 48KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nznxv Size: 24KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
anui Size: 708B - Virtual size: 654B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE