Behavioral task
behavioral1
Sample
16ce218ffe33f5e92083627685528426_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
16ce218ffe33f5e92083627685528426_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
16ce218ffe33f5e92083627685528426_JaffaCakes118
-
Size
56KB
-
MD5
16ce218ffe33f5e92083627685528426
-
SHA1
704844d1e5d0f3585d74f43e2d3d1c9362272cf5
-
SHA256
46ace6d67188577c7fccf74fc799294f1d23389ddb22f883a96938e9b9d657f2
-
SHA512
d31e0631547a2504b4696a37f8b3ff38f011ca1792d7284272176ba20f49f210fd92af40db77b6c04233f0ce21ee00c5ee5b9b71cf8bbb430b5462df22e9752d
-
SSDEEP
1536:QrLbZnmND6dlgbSOb8MQ7eVeOQ5Rg2+EBf8Hj2:QrPRmF6fgbTQ7CRW+2+Eh8Hj
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 16ce218ffe33f5e92083627685528426_JaffaCakes118
Files
-
16ce218ffe33f5e92083627685528426_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 168KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 55KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE