Behavioral task
behavioral1
Sample
299f0d2b66f4a47aa8e4e11ac5ed7799_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
299f0d2b66f4a47aa8e4e11ac5ed7799_JaffaCakes118
-
Size
28KB
-
MD5
299f0d2b66f4a47aa8e4e11ac5ed7799
-
SHA1
5689dc09d60116bc8f2917be9503dbe4dbe7b744
-
SHA256
4986e71f3d508f9e3f06143d9c0ba5ac91235539f77e66ed2ac8eb0574999278
-
SHA512
c355e3d06c8937d0a438f392fb41a8348c67b150693af830b14d21c322cff48935ee9692e0fc182bca7c13d51d11693a137888b667a4a7321abc65ebf0428576
-
SSDEEP
384:+jcyTUdCVBaNJawcudoD7UOq5LkIyvEfWoidL39/f:LyTU7nbcuyD7UVhkIZiJ9
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 299f0d2b66f4a47aa8e4e11ac5ed7799_JaffaCakes118
Files
-
299f0d2b66f4a47aa8e4e11ac5ed7799_JaffaCakes118.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 84KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE