Behavioral task
behavioral1
Sample
75192a674e84ed4b0415f8026b242305_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
75192a674e84ed4b0415f8026b242305_JaffaCakes118
-
Size
148KB
-
MD5
75192a674e84ed4b0415f8026b242305
-
SHA1
27237f1569aa45b57f5216f7a335e3fe7d662b58
-
SHA256
f8e1e25f90329018e6274f9a542f42594cff3c308d914e73a0cea0237f859668
-
SHA512
c91c0fbc9544d57d344f4b7ee496677783fc9a574454c4b90ebeedb76f4e43cd1039c9c1f14550c05a77c859255170f6c2aaa99a30bdb93c2a7ccbfaaaacea8b
-
SSDEEP
3072:n3rmNZVwqnUxIcPRb0ZQwCcQHI12NsF3YE+gLar4Ns//d9+DQzGY4wpZj/AlY6:nWwmUxIYQoHI1Ui33Lar4NyF9+DQz1Zq
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 75192a674e84ed4b0415f8026b242305_JaffaCakes118
Files
-
75192a674e84ed4b0415f8026b242305_JaffaCakes118.exe windows:6 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 348KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 64KB - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 76KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE