Static task
static1
Behavioral task
behavioral1
Sample
b065cf7a228bbcc9a7bb310f1d209834_JaffaCakes118.dll
Resource
win7-20240708-en
General
-
Target
b065cf7a228bbcc9a7bb310f1d209834_JaffaCakes118
-
Size
120KB
-
MD5
b065cf7a228bbcc9a7bb310f1d209834
-
SHA1
58e89ec1d28c43962e1d638c80f14948a9fc20e1
-
SHA256
9b6555b21efff665ae3f5ef89dcf9dc719b6bb59d2c1c23e7e4257a849d2c2a9
-
SHA512
a92f60d82c25a6eae552643f3a516e7ccc12f19812fc0d2a9c9d70331911d0ff3222b1ec3c1c103b96335dcb756745fd51f02cd09a2af2c9e12837b98a748ec8
-
SSDEEP
3072:uYN0gKGJrkCs8voDHDbd4paDgdNRjaAa:uqKGJrkCh0GaDs
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b065cf7a228bbcc9a7bb310f1d209834_JaffaCakes118
Files
-
b065cf7a228bbcc9a7bb310f1d209834_JaffaCakes118.dll windows:4 windows x86 arch:x86
0f44bf2b3b0b8d5ecae5689ff1d0e90d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode
user32
wsprintfA
Sections
.text Size: 119KB - Virtual size: 118KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 376B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ