Behavioral task
behavioral1
Sample
09e0039673c9055ce2db0017f47b112f_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
09e0039673c9055ce2db0017f47b112f_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
09e0039673c9055ce2db0017f47b112f_JaffaCakes118
-
Size
5KB
-
MD5
09e0039673c9055ce2db0017f47b112f
-
SHA1
d118bee846b5a824494a6646647bab0ef3513ba2
-
SHA256
5908350c6c62c5de5ddfb7b00d546fddf812b2f617a126ea904233d8a5f5d8b2
-
SHA512
bfd63336c89f86126ba2b9ea8efb4c393dbc383d82e567a55c275b81de228065580bf42adf7926322cc1986b117b9d26b9ea6db3113c38ce6486345efafae4a9
-
SSDEEP
96:86zssrPf4IHQ9puEdua9QdFLDrPS2p4+T+iT6fhqJZETH0ogxVZZCITz:3s6ZQ+AQzDtpjTaJAZ6qnt
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 09e0039673c9055ce2db0017f47b112f_JaffaCakes118
Files
-
09e0039673c9055ce2db0017f47b112f_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 32KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 25KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE