Static task
static1
Behavioral task
behavioral1
Sample
a5162580491451a64d55ca70b4e2f2aa_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a5162580491451a64d55ca70b4e2f2aa_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
a5162580491451a64d55ca70b4e2f2aa_JaffaCakes118
-
Size
864KB
-
MD5
a5162580491451a64d55ca70b4e2f2aa
-
SHA1
fd6ccef2466fdb7df58a8654b80eec675065eb08
-
SHA256
ca7c7472ad78fdaac409bb1262c9a76a230be6d8df4ea749c03108ab46107385
-
SHA512
f320f2f3596644bfc7c87bc1159372a0503d1011bbb81c9a024136e666cd3a0d9c7049e0ea83bbd353dff0ffb8fbc9ce86fab295d32072bcd50f7861feb0ceaf
-
SSDEEP
24576:K6R3Pwee2NddaeYAZZAmVjja2Wf00fb5SqMxb:N4eeim8PW804qwb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a5162580491451a64d55ca70b4e2f2aa_JaffaCakes118
Files
-
a5162580491451a64d55ca70b4e2f2aa_JaffaCakes118.dll windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.textbss Size: - Virtual size: 3.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 1019KB - Virtual size: 1020KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 510B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 72B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 24B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ