Static task
static1
Behavioral task
behavioral1
Sample
b164c3f82670201677a5d426beddcbfc_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b164c3f82670201677a5d426beddcbfc_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
b164c3f82670201677a5d426beddcbfc_JaffaCakes118
-
Size
95KB
-
MD5
b164c3f82670201677a5d426beddcbfc
-
SHA1
ad6f324a3054b7eb458785075c8e1db03112b1be
-
SHA256
5a7e1a829766e6d9e89155ab9d3c2e040ab977f874cf1c2acc1283054c0229cf
-
SHA512
773a35ed639d50caa3e4d492fd9364b9af2050617552f0478577c438eed609475da3c110bf8cb8365187734239929c039388fe7ada040421f10d840f5bcb4480
-
SSDEEP
1536:jtp29ocgGZIO6O4cuI/4+qo7mwyg4ToH/Ohr/bUNmh9Ta5LYR+iRI+Dpn:Zp2q4VKq4+q5RTo5+9Ta5LN+R
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b164c3f82670201677a5d426beddcbfc_JaffaCakes118
Files
-
b164c3f82670201677a5d426beddcbfc_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.oicq Size: 67KB - Virtual size: 67KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.hight Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.make Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
movei Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ucsina Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.ssloev Size: 4KB - Virtual size: 3KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.come Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ