Static task
static1
Behavioral task
behavioral1
Sample
d5d1a84c22d596207d4ec17aae7235a7_JaffaCakes118.dll
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
d5d1a84c22d596207d4ec17aae7235a7_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
d5d1a84c22d596207d4ec17aae7235a7_JaffaCakes118
-
Size
176KB
-
MD5
d5d1a84c22d596207d4ec17aae7235a7
-
SHA1
7976e4f482da267c9ffdc38d1d6fcf006c8d487c
-
SHA256
de34c7757fdf8e1e890722c716f75dfe6fd20432804374979b85f92100aec547
-
SHA512
db4ef17b24373286934425e5f5d1fdd6a06cbc7fbe6967cef36080b6ffa257845a8364f513a1a784ad89810e438a951d911869eacdc5848d43cae2e3f8d87825
-
SSDEEP
1536:ajFLfrLq1YD5qEqqbMsq+fdwWmJ5TWo4+2Yy9IWKaWph3YgBgF8SsvuvB:axfUOBqXse1Tt2YyO/YMVuvB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d5d1a84c22d596207d4ec17aae7235a7_JaffaCakes118
Files
-
d5d1a84c22d596207d4ec17aae7235a7_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Sections
.text Size: 116KB - Virtual size: 115KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 28KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 860B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ