Behavioral task
behavioral1
Sample
68a95c384dd0221f32b2ef2d004b92ba_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
68a95c384dd0221f32b2ef2d004b92ba_JaffaCakes118
-
Size
1.3MB
-
MD5
68a95c384dd0221f32b2ef2d004b92ba
-
SHA1
7d4eeb0fd5bc3da16548f54c69c0bad66761e415
-
SHA256
c4cdb1e060000a783e0156242fa2d308406cd5aa9de61e6d85b10c48977316c4
-
SHA512
99f12f13418cb99767d99732b4656ecc963282e7348e4720e53f177881be3483e58291958c57cb9275500ef8832db2bdd85a2fd7d36fc35d7eb4ca570da1a899
-
SSDEEP
24576:bN4F+KjpW/A103tCFZtqLQeVy4KsdHvceFbzxTv:BE6eZiTVy4NJ/bzxT
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 68a95c384dd0221f32b2ef2d004b92ba_JaffaCakes118
Files
-
68a95c384dd0221f32b2ef2d004b92ba_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 848KB - Virtual size: 848KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 462KB - Virtual size: 464KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE