Behavioral task
behavioral1
Sample
23526a69b0617dd4d8d778ebd112cd3e_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
23526a69b0617dd4d8d778ebd112cd3e_JaffaCakes118
-
Size
784KB
-
MD5
23526a69b0617dd4d8d778ebd112cd3e
-
SHA1
f4f47add507f48983d05d33f3638d85470f82321
-
SHA256
b5b7b98fdf9d61937f72ca0bc0be40a96a1bfad125498f6dc870c216c50834d9
-
SHA512
76ac5fbe6358f3fbda323b1e9d22c8535c62d2fbff8ab56f86358c3cc9478eebeb407555672df7f25027f1a7de994019078e5daf67899dce4479e60c75bf4216
-
SSDEEP
12288:J/WtA8XTFcti1DxFU26gzOyUD3/TwIb+ureCfUwwKxSzbwPoqh1lfOwk6DxN5Dl:FWu6itiZxWgyx/pRrhfmK6bw5ddfD
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 23526a69b0617dd4d8d778ebd112cd3e_JaffaCakes118
Files
-
23526a69b0617dd4d8d778ebd112cd3e_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE