Behavioral task
behavioral1
Sample
b4d9d3f88adcd2276dc3f172c187b40a_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b4d9d3f88adcd2276dc3f172c187b40a_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
b4d9d3f88adcd2276dc3f172c187b40a_JaffaCakes118
-
Size
40KB
-
MD5
b4d9d3f88adcd2276dc3f172c187b40a
-
SHA1
873c03e7467f39120ed4b65a51243e738f2387e8
-
SHA256
0dc515c5fc4dec7af86faff742f3c5393fd2ab35fbb0c0d2db475d5c59941d82
-
SHA512
30f059993d6e99457db8ddeaade889d121dd8d09ebd4c8111cd78b9748eccc0c01e70748963f38adc31e3b76bee9fda346e9d4d48c69a515d956764aefdf9640
-
SSDEEP
768:kdP6foIgQSheiIQcseRQ2ygbWVzPcmFOPwkqf8G+kRUEuwPvHdShBY1jmvR:sCwI+8RQ2/6zPc/IJckCETvHdg4mvR
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b4d9d3f88adcd2276dc3f172c187b40a_JaffaCakes118
Files
-
b4d9d3f88adcd2276dc3f172c187b40a_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 812KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 814KB - Virtual size: 816KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 25KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE