C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\estreetAdmin2\root\d8c472c3\92e194f1\App_Web_brandfilter.ascx.6bb32623.rrasyhcy.pdb
Static task
static1
Behavioral task
behavioral1
Sample
b22a8104b3f8179c30297166b78ace5f_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b22a8104b3f8179c30297166b78ace5f_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
b22a8104b3f8179c30297166b78ace5f_JaffaCakes118
-
Size
13KB
-
MD5
b22a8104b3f8179c30297166b78ace5f
-
SHA1
8a098c0b5fb40b345bb074d873f3ff383903d1d6
-
SHA256
57aae4a3dfbd6d095e47e28aee1c3dab4c26efef9d1cb6f474d423a6a33d60ad
-
SHA512
711ac94302cf4faedb995a035f4dd5b477cea2720b51e9f771803622ae8446cc6cb91f4b37709bb4531a4bc7628517f31604bb0171fda1067f0db8eb677a590d
-
SSDEEP
192:usFtR0w4OMkHF4Y/UqSJ3tppWjGe22nkLA/WqZV/e7EBamNWJJ:+w4OZnrw3+2AkLAZWIPNWb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b22a8104b3f8179c30297166b78ace5f_JaffaCakes118
Files
-
b22a8104b3f8179c30297166b78ace5f_JaffaCakes118.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 206B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 816B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ