Behavioral task
behavioral1
Sample
19870f2feb41bf7fea735a6ff830e730_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
19870f2feb41bf7fea735a6ff830e730_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
19870f2feb41bf7fea735a6ff830e730_JaffaCakes118
-
Size
209KB
-
MD5
19870f2feb41bf7fea735a6ff830e730
-
SHA1
9197330dabe5cda1cbbb711d0fd88743e1a467fc
-
SHA256
3e9f6c8bb27aac828457960a302db12f8b6fc2fb42976fa4e6dbdaf5887a5845
-
SHA512
a6c84cf80721f039c7172cefa758191fe0ff94cabc171ddbd6abd5b4f7637979a17b2cd0d36bf40b7279b4035a4c5cd7d735fea45b7f6a479610fb285eec8545
-
SSDEEP
3072:Hhztztkpq8QdnhlCGpBiPV2VDL2OtsU31Vg12P:Hxtapq8snhlCGpByV0rB1N
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 19870f2feb41bf7fea735a6ff830e730_JaffaCakes118
Files
-
19870f2feb41bf7fea735a6ff830e730_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 92KB - Virtual size: 92KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 69KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 47KB - Virtual size: 84KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE