Behavioral task
behavioral1
Sample
274e8faf7c5da99191a0d355ce9c93ba_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
274e8faf7c5da99191a0d355ce9c93ba_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
274e8faf7c5da99191a0d355ce9c93ba_JaffaCakes118
-
Size
469KB
-
MD5
274e8faf7c5da99191a0d355ce9c93ba
-
SHA1
ce21b08a70b82ae7e21d3bbb69f1e34b7dd280d1
-
SHA256
7cd61410159ca2820d185c01bbd6bea9833d9e6ab18ecdc717f57dfd3583140e
-
SHA512
4226765fa07471737c997c3da63e4779918ce51c71921fcdcb2d434e32c3aa21a023506c797c673ac746472c40b5673dd0366fb0a7aa1f6c7fba7d5b0cec8bc6
-
SSDEEP
6144:O6f/84pSDFmVds7dR9kmYiuH6lhfQZ42jvvpxC8VtnGn7mDJHAm:b/7SD+dshRemDSZ5vvtVwnMpN
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 274e8faf7c5da99191a0d355ce9c93ba_JaffaCakes118
Files
-
274e8faf7c5da99191a0d355ce9c93ba_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 268KB - Virtual size: 268KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 190KB - Virtual size: 192KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE