Behavioral task
behavioral1
Sample
4264ff1a745ae68974fba9fcf96dac17_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
4264ff1a745ae68974fba9fcf96dac17_JaffaCakes118
-
Size
744KB
-
MD5
4264ff1a745ae68974fba9fcf96dac17
-
SHA1
73ff6034bddf5b7b74b6b919b0a0d54d39248e83
-
SHA256
8d907c4d46186f6c3a1c6e6456bc016bba47cb0d3ccb75c8fe6130e4a51fb753
-
SHA512
144819cec6564e57d6b1804f111a1c6d60c6ce42ef9146c4c708efde5290d65caeb429f74a16cda713c226737a23260ad16d64ffb2c87539ec883e2ac6f62ee1
-
SSDEEP
1536:DINLOAcJKO7ZPSSJu/v/prlQn3GTVop+5I4ST0zDo+nueM5V5VYQ7:zZPSc+6GTypAIRTco+O5V5+Q7
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4264ff1a745ae68974fba9fcf96dac17_JaffaCakes118
Files
-
4264ff1a745ae68974fba9fcf96dac17_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UuMQ Size: 700KB - Virtual size: 700KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UuMQ Size: 42KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE