Static task
static1
Behavioral task
behavioral1
Sample
de53e8b6aec6ac0c53afe9d4fc4d9fd2_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
de53e8b6aec6ac0c53afe9d4fc4d9fd2_JaffaCakes118.dll
Resource
win10v2004-20240910-en
General
-
Target
de53e8b6aec6ac0c53afe9d4fc4d9fd2_JaffaCakes118
-
Size
12KB
-
MD5
de53e8b6aec6ac0c53afe9d4fc4d9fd2
-
SHA1
eae0021182db376ccfaa58916097d7ac226833b4
-
SHA256
995f8ce33eeb076a0c582d8a1cb5be11c1ac91f79d6659f611c64ec01e3e9a62
-
SHA512
31f729d284a6301bc23c932e376c801b8121a3ba742b787fcdcd099bcd79f66abf2dc8cf0e37b3184145b1ea30591552b7423c1a3eaabdba634232c3de0823f5
-
SSDEEP
192:4q2THuBnwEHejr6dW3l0vdV+mdLe3Iu2Cw5XIjiVMqpIVJIvReuJvm3c602uRaJn:wAz+yc2vDDeJ2CwhIjWIVeJnJnL2u3u
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource de53e8b6aec6ac0c53afe9d4fc4d9fd2_JaffaCakes118
Files
-
de53e8b6aec6ac0c53afe9d4fc4d9fd2_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
nohacks0 Size: 512B - Virtual size: 511B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nohacks1 Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nohacks2 Size: - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE