Behavioral task
behavioral1
Sample
28acde652bd8fbac029ae7d085494973_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
28acde652bd8fbac029ae7d085494973_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
28acde652bd8fbac029ae7d085494973_JaffaCakes118
-
Size
397KB
-
MD5
28acde652bd8fbac029ae7d085494973
-
SHA1
39691d1aaf5cf16c131cafdad36a3c65c799ee28
-
SHA256
f1c4578b04b2e7535587db9265bf84d1d77ba23c298f02d70d1af11e4163147d
-
SHA512
36d89fd10e48876a7742ce0c11dc62addbfafce65f443ee11228e670f77342f9b5ecc672afa2754ecddf7757b6dfa4d8b2f423e20675566aab533d0c1ddf4209
-
SSDEEP
6144:h78gcjHSyeYCD9fOITpiLxVsE0BH0kAMZ4RnUtBfKryo1Y9fx9pmYF:h78yfYKPiL/anAMZi+Byr1qfxi
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 28acde652bd8fbac029ae7d085494973_JaffaCakes118
Files
-
28acde652bd8fbac029ae7d085494973_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 204KB - Virtual size: 204KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 180KB - Virtual size: 184KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE