fb887d7e1a0134bfd35061b478d7111d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb887d7e1a0134bfd35061b478d7111d_JaffaCakes118
Size

353KB
MD5

fb887d7e1a0134bfd35061b478d7111d
SHA1

f1ec0b5e5f8f9a48b51d0443e352dabb407ca11f
SHA256

67153275812c23cbab7e022e0e8b19a3ef7b8f0bb9389bb2453a7b7a8b872071
SHA512

52039dc9f5e6b2244bf7b611a5756ff30eadd1436d8fdb11ef197fdb70c90b1b8bdc2b10088f32a910a56bf423fa8cc03e99c9e1c25c4c90343523a8ab96f32d
SSDEEP

6144:VATOeVwiFEgDaIMivMlFSd3wVmdyKRg7vfx49dcl4EShv+C+e+GNLBRU2:VATOeOlgDajlId3OwRAvfxBl4Eev7+0p

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
fb887d7e1a0134bfd35061b478d7111d_JaffaCakes118
unpack001/out.upx

Files

fb887d7e1a0134bfd35061b478d7111d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 880KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 258KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ