03ac0666419514436ef593916fb804b8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03ac0666419514436ef593916fb804b8_JaffaCakes118
Size

67KB
MD5

03ac0666419514436ef593916fb804b8
SHA1

c55cce9d8ea613752044d855c16ac3deb07ddaa8
SHA256

34f196ab87af8db341b6e6c6f3606118e91c65c9a2c6007ae23a8cf0cafd88f6
SHA512

c1543d6906f8635f01829a3a4447ea572f020324edef0c986630cb84879b34e3a0583b68fbf9df229d5b702d1e546a3d5bd746620ccaff23cf65b6e0489f81d3
SSDEEP

1536:HciYKyG/phKz+WDz346nU9TTWxjQT3kKCL81x+gnaaiWv197gSHsvx7XHwd1EDo0:8/KvBhKztz3XU9TTWVQTUS8AaQv1/Hmr

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
03ac0666419514436ef593916fb804b8_JaffaCakes118
unpack001/out.upx

Files

03ac0666419514436ef593916fb804b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 208KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ