262c040154fa9b3dc31c412766c6ca73_JaffaCakes118

General

Target

262c040154fa9b3dc31c412766c6ca73_JaffaCakes118
Size

730KB
MD5

262c040154fa9b3dc31c412766c6ca73
SHA1

1d866f263852cb8aa1abe0ac8548631cf2cfb162
SHA256

19a78b75055cb6bbf820c138301baa9ac7a9bedb1c56de3c2323c34814164a25
SHA512

e41cd9358fa95c984b5931d79075ebc4ab9596d4af7c7ac4aa05d0f1a74b0802798588f1267df1750c80bcf32dd32a0d0602e7e16c655cbecf64a9dd930b165f
SSDEEP

12288:mfStbVFadQYM8BPUv66ChuHeBSebdhf+nbco37/p0YnAXu6bMlY5GLoS2oiFhvb7:io+GYM8BeChtSe5h27iY76bMa5GLohfX

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
262c040154fa9b3dc31c412766c6ca73_JaffaCakes118
unpack001/out.upx

Files

262c040154fa9b3dc31c412766c6ca73_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 356KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 372KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 531KB - Virtual size: 530KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 691KB - Virtual size: 691KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.0MB

UPX1 Size: 356KB - Virtual size: 360KB

.rsrc Size: 372KB - Virtual size: 376KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 531KB - Virtual size: 530KB

.rdata Size: 103KB - Virtual size: 103KB

.data Size: 11KB - Virtual size: 27KB

.rsrc Size: 691KB - Virtual size: 691KB

.reloc Size: 27KB - Virtual size: 27KB

UPX0
Size: - Virtual size: 1.0MB

UPX1
Size: 356KB - Virtual size: 360KB

.rsrc
Size: 372KB - Virtual size: 376KB

.text
Size: 531KB - Virtual size: 530KB

.rdata
Size: 103KB - Virtual size: 103KB

.data
Size: 11KB - Virtual size: 27KB

.rsrc
Size: 691KB - Virtual size: 691KB

.reloc
Size: 27KB - Virtual size: 27KB