Behavioral task
behavioral1
Sample
378a9505c4cf7ae672e9e367cb6690b6_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
378a9505c4cf7ae672e9e367cb6690b6_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
378a9505c4cf7ae672e9e367cb6690b6_JaffaCakes118
-
Size
65KB
-
MD5
378a9505c4cf7ae672e9e367cb6690b6
-
SHA1
da214c03d93ea9a5d33c3293f2c367d598d6d2d7
-
SHA256
89c7b33c77f2b21ec36eb7d9986dae54e110dce271f8e8ce4607e899c0a3a54b
-
SHA512
b704413a52210d143c3833ac89a329f5b778fae47b37a42161e451599fd4d771b8a3297b631b865c40e72511a74543b05bfaaa676e0552f2b5c5a961b814b782
-
SSDEEP
1536:v4/UPqedY8mvln1GlbBv5uCMpcodz75hkQIXeCFKfGLH2RqTDO:vCaqkWrG3T+HhkQIuKKOgqTDO
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 378a9505c4cf7ae672e9e367cb6690b6_JaffaCakes118
Files
-
378a9505c4cf7ae672e9e367cb6690b6_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 684KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 262KB - Virtual size: 264KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 66KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE