Behavioral task
behavioral1
Sample
3285eca05c3b384b6ee4a8b7bc116c49_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
3285eca05c3b384b6ee4a8b7bc116c49_JaffaCakes118
-
Size
784KB
-
MD5
3285eca05c3b384b6ee4a8b7bc116c49
-
SHA1
63bfa3af89ef1ec1ef3676db5f75358cba216ee3
-
SHA256
ac3632f4b8ea3fef5595fbadf5c1f76a4ed6f96644dad383f287c3858823ec1c
-
SHA512
a4216f21f358647b7b95e3bd0349c3d5c91e591e6b9b85c730ffb36c8d8bf0abe5200d0b3fca82e590d936a67847ccd82af9eb05ab74e77f5912388270a67041
-
SSDEEP
24576:E7thwpKBHa0ShQUTUNdoekcrBM2jj5rAa6/HxTDPqF:KmKa0SbEKekcrBM2R8a6PxPg
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3285eca05c3b384b6ee4a8b7bc116c49_JaffaCakes118
Files
-
3285eca05c3b384b6ee4a8b7bc116c49_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE