Static task
static1
Behavioral task
behavioral1
Sample
2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118.dll
Resource
win10v2004-20241007-en
General
-
Target
2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118
-
Size
527KB
-
MD5
2da92d0bcf856facf8c23d0cedbccd20
-
SHA1
f4e8630bf66b0600dc03000cac921dfa67d34ef5
-
SHA256
9fecd2fa0b2b33be373018cb39cfb132d073f624e4961565580cb3d06fe8c1b1
-
SHA512
5c47399ca5c684c90987ed21afcaee96e15ca8ea4da43656cf4cfdb122596545a0711b01c7a9c14ccc19e4f78b6f33c2f0781c7ce79f32433d8015cbd7792811
-
SSDEEP
768:Rqpe4qwt1Icy5HtKvtjTmk0K95hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhM:ER85Huukq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118
Files
-
2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 19KB - Virtual size: 19KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 512B - Virtual size: 292B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 16KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ