Static task
static1
Behavioral task
behavioral1
Sample
a37ee43483e5ace449b8203e3dd2ef02_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a37ee43483e5ace449b8203e3dd2ef02_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
a37ee43483e5ace449b8203e3dd2ef02_JaffaCakes118
-
Size
48KB
-
MD5
a37ee43483e5ace449b8203e3dd2ef02
-
SHA1
012a506b2e95c72dedbd90205965659052655a08
-
SHA256
b9363b7430017f83431f4418aeef989c5a4f41d21c9f9cb25a36fe3524df1cbe
-
SHA512
6a5af5ea3cdf71f3c0a66b01576e4dc5925531cedcdad324b58c8bb24f2586c71226fc3626ca8e13f67a2b3af326d54df3448dd868376d74fbee9fde5f908f4d
-
SSDEEP
768:GPf/Y+IivYkIuDg6DrS7P2J+9bKO3aiRuDkG3kBSrjybFC0vUkAVhZ+:GPXY+bvSukzLRiD9kBQjyJnqX+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a37ee43483e5ace449b8203e3dd2ef02_JaffaCakes118
Files
-
a37ee43483e5ace449b8203e3dd2ef02_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.text Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 33KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.code Size: 10KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE