Behavioral task
behavioral1
Sample
27e9ac17683e4b33986a2d0077c6e0e3_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
27e9ac17683e4b33986a2d0077c6e0e3_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
27e9ac17683e4b33986a2d0077c6e0e3_JaffaCakes118
-
Size
12KB
-
MD5
27e9ac17683e4b33986a2d0077c6e0e3
-
SHA1
ba35b0dc2ddc750e28d9003f09c7750add0621f9
-
SHA256
d228060cb2a8d5019ecc4ddbced8598c2033b7a77ddbbe6fb961f34240ba63b6
-
SHA512
d858e00b97b36c7cc369eaab4699f80d73f5e3bc0fd30d0c0484f61065b0d069835da5849b955016500b84f491af96693784dfcae384cc3c62b2a232516aea6a
-
SSDEEP
384:GotIW3kQeVzDHsfYd/2ltP7B6xp3V6T2/l:b3kQYzDHKQ2ltzB6xiT2/
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 27e9ac17683e4b33986a2d0077c6e0e3_JaffaCakes118
Files
-
27e9ac17683e4b33986a2d0077c6e0e3_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 36KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE