3f411bfeace8dde42882c62e42de884f_JaffaCakes118

General

Target

3f411bfeace8dde42882c62e42de884f_JaffaCakes118
Size

256KB
MD5

3f411bfeace8dde42882c62e42de884f
SHA1

91f6070f9ba15e49bbc460498238c4ecd75f4b60
SHA256

2e6687cc7d1bb3d6b481fbaf0ea03b9fdb99edc1fea0fc873ef61a135b563a46
SHA512

00ede2693e7865bf617d40340247c61c3e101e42e91f58d1df4f6c7513a7eadb4650248de50bf3792015cdaac093c4042c5c672a9ad5dbca68b8c321100378eb
SSDEEP

6144:I6GeOSFU2K1WqE1z+4Zo5iSJIJsFCCrOqMPh+q5t:tGeOS1K4qE1zdoFIeIQgt

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
3f411bfeace8dde42882c62e42de884f_JaffaCakes118
unpack001/out.upx

Files

3f411bfeace8dde42882c62e42de884f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 253KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_DLL

Sections

��J��
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�Ág;"4
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�� 'w�=
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

��~�t�
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��B{wY
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�SE�#�o
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��m�b-
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 168KB

UPX1 Size: 253KB - Virtual size: 256KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Sections

��J��� Size: 1024B - Virtual size: 3KB

�Ág;"4 Size: - Virtual size: 2KB

�� 'w�= Size: 243KB - Virtual size: 243KB

����~�t� Size: - Virtual size: 1KB

���B{wY Size: 6KB - Virtual size: 5KB

�SE�#�o Size: 147KB - Virtual size: 146KB

���m�b- Size: 1KB - Virtual size: 1KB

UPX0
Size: - Virtual size: 168KB

UPX1
Size: 253KB - Virtual size: 256KB

.rsrc
Size: 2KB - Virtual size: 4KB

��J��
Size: 1024B - Virtual size: 3KB

�Ág;"4
Size: - Virtual size: 2KB

�� 'w�=
Size: 243KB - Virtual size: 243KB

��~�t�
Size: - Virtual size: 1KB

��B{wY
Size: 6KB - Virtual size: 5KB

�SE�#�o
Size: 147KB - Virtual size: 146KB

��m�b-
Size: 1KB - Virtual size: 1KB