Static task
static1
Behavioral task
behavioral1
Sample
c0823119ec1268409489db82a621b607_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c0823119ec1268409489db82a621b607_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
c0823119ec1268409489db82a621b607_JaffaCakes118
-
Size
7KB
-
MD5
c0823119ec1268409489db82a621b607
-
SHA1
aabe8f87d06f4c0c50fba7c79e2c3836e1039fda
-
SHA256
babadd0e432eb19731d85207ad7ba56de5dbb4db3b208bb47124932c2c7570ae
-
SHA512
8785049b8c43179db9300491d4920baf33a96403d103f4c8728da3289b4636de126ed7ca7baa0b1ed2b7463c14909e5e82a261237f1dc095d4c10c34e9b81d58
-
SSDEEP
96:ZGtJlcddKjne2eq61NjPgz4vXMSh0GM5SSilVXuoQe7EZp6O4NyOW6AM+5nOpk5o:SWW16zg0vX3hDMkSiDH4p6P26SOPsDb2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c0823119ec1268409489db82a621b607_JaffaCakes118
Files
-
c0823119ec1268409489db82a621b607_JaffaCakes118.dll windows:1 windows x86 arch:x86
60180305da1b391f4fc2af5784ddd919
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
TransactNamedPipe
GetMailslotInfo
GetConsoleMode
SetFileApisToOEM
VDMConsoleOperation
lstrcatA
gdi32
UpdateICMRegKeyA
SetViewportExtEx
OffsetWindowOrgEx
CreateColorSpaceA
Sections
.flat Size: 7KB - Virtual size: 74KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE