Behavioral task
behavioral1
Sample
674f5df70888ea5aaa9f3e488b3b97e7_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
674f5df70888ea5aaa9f3e488b3b97e7_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
674f5df70888ea5aaa9f3e488b3b97e7_JaffaCakes118
-
Size
49KB
-
MD5
674f5df70888ea5aaa9f3e488b3b97e7
-
SHA1
5f6a5df0291a334b862fb7339cacfaafc046c77d
-
SHA256
125c0b5f54b56ce183ae94724c49304ee0c41e6e9d9bebd9ac55bb961bbaf883
-
SHA512
1639d760ecca36d04ec46cca5c640caf38b3d5ade0d99ca16ce0f938d1d672edeeab42df338e084f1d0b0dd1b0bfe2e3affa823115bbc3da6da1a67cff1f45d2
-
SSDEEP
1536:uQIEJUZetCi284cMbvilq2kOee4ehaye0wMRv:j22qRbYsLe40w
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 674f5df70888ea5aaa9f3e488b3b97e7_JaffaCakes118
Files
-
674f5df70888ea5aaa9f3e488b3b97e7_JaffaCakes118.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 520KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 46KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE