Static task
static1
Behavioral task
behavioral1
Sample
abea8e21a57b0f904405fb34fb727633_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
abea8e21a57b0f904405fb34fb727633_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
abea8e21a57b0f904405fb34fb727633_JaffaCakes118
-
Size
90KB
-
MD5
abea8e21a57b0f904405fb34fb727633
-
SHA1
396c021f47db577a849803a8b2d16de6e8e84ae9
-
SHA256
64d1b5eb6ff0baddbdeb86765fae43a2f1081f51ddcc77cdbe3d4aa4f9a16a91
-
SHA512
c38c2beae1baaa6627cbbde9ceca54d5fc4413e944af2a3b07e2e58cdd3881300b7b53bc913d67cf8d7b95cb3df991a86600489d49d622fb325abbf882f6a6b4
-
SSDEEP
1536:Kae0Gd+CmadWdOgSFw4oO4/q0VmHcCbAUOs3SygMvm5tPszCAkfr:M0B9adWCF4lVqciX3zvmPwqfr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource abea8e21a57b0f904405fb34fb727633_JaffaCakes118
Files
-
abea8e21a57b0f904405fb34fb727633_JaffaCakes118.dll windows:5 windows x86 arch:x86
26c2ac6ea7446dc47b7bc56894882c9d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
shlwapi
UrlCreateFromPathA
UrlCombineW
user32
TranslateMessage
SendMessageA
MessageBeep
DialogBoxIndirectParamA
MessageBoxW
GetDC
DispatchMessageW
advapi32
RegCloseKey
Sections
.text Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 75KB - Virtual size: 140KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 10KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Y Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ