Behavioral task
behavioral1
Sample
3a2a9a4454c982bc357bde01e1fc0ec8_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
3a2a9a4454c982bc357bde01e1fc0ec8_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
3a2a9a4454c982bc357bde01e1fc0ec8_JaffaCakes118
-
Size
139KB
-
MD5
3a2a9a4454c982bc357bde01e1fc0ec8
-
SHA1
ba336b21541aa6fb4ad4cb8d17b998090044b54c
-
SHA256
daa60a8be23d6638ce54b45738c81802beff80715c40ae27a587706d2f7be478
-
SHA512
8b6cc7e9134d7cd55f3c79d047c060fc2e82310210bb5700cfa22216021664afe6c687a19ae79056ad02399facf931ecfeb73c4f60805892b5e1744ce3de2839
-
SSDEEP
3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3a2a9a4454c982bc357bde01e1fc0ec8_JaffaCakes118
Files
-
3a2a9a4454c982bc357bde01e1fc0ec8_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 220KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 127KB - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE