Behavioral task
behavioral1
Sample
5b670c3445d0fc2a720ee01085a695fd_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
5b670c3445d0fc2a720ee01085a695fd_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
5b670c3445d0fc2a720ee01085a695fd_JaffaCakes118
-
Size
28KB
-
MD5
5b670c3445d0fc2a720ee01085a695fd
-
SHA1
0da7ad8863ea44bc3a8c7d0c6e5e87dd1a53b25d
-
SHA256
163f7be5a40af15a6d75b103e89e098f17387f7cb9bf32a5a817f6315a0e6c4a
-
SHA512
89590f78e3914e99bdb4d12e948b5b2f1bc4c39c9b54e7518cc7a0c2426c79b4d9b042a9dda410efdeddea6b6b0ba577315362a0a21d1f0e1186c5183594fc58
-
SSDEEP
384:o9TWvHxVq2job1lv0it56huzhgiBt+oPqVrqsMo4SochbJ+ljWb2Wi:auHO2kb1lc056szhvn+pVmLo4SBN+l0
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5b670c3445d0fc2a720ee01085a695fd_JaffaCakes118
Files
-
5b670c3445d0fc2a720ee01085a695fd_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE