Behavioral task
behavioral1
Sample
32703b7adc640080011bf059d981c687_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
32703b7adc640080011bf059d981c687_JaffaCakes118
-
Size
1.5MB
-
MD5
32703b7adc640080011bf059d981c687
-
SHA1
c792d5832c98a55573ee2e29e1cab542b71b7266
-
SHA256
be9f534db66cd88c75514bc64b7908fdea1633b3b6c5230a35decde2a45cf39d
-
SHA512
900fb37d28061c67a3d5633cfab6dc042d2990d190ecbe07ca0bfb443fdbe62bf25990ac342601ec513a8f0d7a0dbececaa37dc4326106611c83d1efad905ef1
-
SSDEEP
24576:u9Xb21LyrJ0cK2kdm1x944i9eFcbWQlzyeJpdtqTDPnSq+C06RDRf5vQ/drwmlbC:4bw5cK2kdeFcXzpHjuDfSUZedV8
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 32703b7adc640080011bf059d981c687_JaffaCakes118
Files
-
32703b7adc640080011bf059d981c687_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE