Behavioral task
behavioral1
Sample
e866da0118ff583f3421bd3fa45b9634_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e866da0118ff583f3421bd3fa45b9634_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
e866da0118ff583f3421bd3fa45b9634_JaffaCakes118
-
Size
5KB
-
MD5
e866da0118ff583f3421bd3fa45b9634
-
SHA1
c916e268d55f8d3bd6fef17d57faf0ba939ac329
-
SHA256
817aecfa0ab5a47b15a59f6882502a0ff68c09a8535b97f352cdeb59c5d016b3
-
SHA512
e57e0c4c982713f84f043a5f7c8d526d6f1c2ffac2cd8cf6cc2084f88cc4a8249d88dc2702359759860c2cbf87ea2baf61766d298e03f9e30d0b870742efb36f
-
SSDEEP
96:c65dmM6ixFGZ1tUDv8245oSrY928+Oz7A8Ot8y5LD1j7f2d:vdmMO7eIrYlutl5Lt2d
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e866da0118ff583f3421bd3fa45b9634_JaffaCakes118
Files
-
e866da0118ff583f3421bd3fa45b9634_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0��@ Size: - Virtual size: 28KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE