Behavioral task
behavioral1
Sample
75bb5e3df86039554206d634e48e29b9_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
75bb5e3df86039554206d634e48e29b9_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
75bb5e3df86039554206d634e48e29b9_JaffaCakes118
-
Size
255KB
-
MD5
75bb5e3df86039554206d634e48e29b9
-
SHA1
bd4bfb7fdecb8eccc393d7eac3b23fd1c9b753a8
-
SHA256
47118c14ac2088e8938e6ce7ab1b58949623b302cdae0014dfd8c0c916300fc2
-
SHA512
29fb0a20a8d71f5967d6672ea147ec2e00515272cce5f1b9e8d84944217cafa354d6781653dfea665d22fd8be0b6c53a5bab965205e1cf9d5c1af3df7025c152
-
SSDEEP
6144:Wlh90nthls/D4MeIZxrTWCm41STjGi1TZW6+be:c0t7yD4MPL1qG6N+
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 75bb5e3df86039554206d634e48e29b9_JaffaCakes118
Files
-
75bb5e3df86039554206d634e48e29b9_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 96KB - Virtual size: 96KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 156KB - Virtual size: 160KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE