Static task
static1
Behavioral task
behavioral1
Sample
f0a879de2ba87827e573d2ba6578f8d6_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f0a879de2ba87827e573d2ba6578f8d6_JaffaCakes118.dll
Resource
win10v2004-20240802-en
General
-
Target
f0a879de2ba87827e573d2ba6578f8d6_JaffaCakes118
-
Size
30KB
-
MD5
f0a879de2ba87827e573d2ba6578f8d6
-
SHA1
835eb1dc3d4d1ff1b3edc8c06203a458bb02b75b
-
SHA256
f12d2ccd93ef5776464cab064a45336ebfcd1b04bc5979a6c3e35638ea93fbf8
-
SHA512
4c0609bbb228612470d4f5d1d9a261f1b86dfbc223359bb682e53a5288a863cda3a07288696a08fa2a7529362820c5a0a1f54d8369cf76891146772ef0c1e559
-
SSDEEP
768:Zpsx//HNx457hH8tTGDTDbiB//RJ/sNU/4u:ZSN/NxQmtTGDTD2p/n/7/4u
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f0a879de2ba87827e573d2ba6578f8d6_JaffaCakes118
Files
-
f0a879de2ba87827e573d2ba6578f8d6_JaffaCakes118.dll windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.text Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ