Behavioral task
behavioral1
Sample
7807e7589e155e9197470e62d0246351_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
7807e7589e155e9197470e62d0246351_JaffaCakes118.exe
Resource
win10v2004-20240729-en
General
-
Target
7807e7589e155e9197470e62d0246351_JaffaCakes118
-
Size
151KB
-
MD5
7807e7589e155e9197470e62d0246351
-
SHA1
c4be789497452d18a908b89cd0d0e1930ba74502
-
SHA256
1d64345b7fa34e2d021809006043c126e55d5fa6275d6e1886df5afd76d7ab16
-
SHA512
02d1282ef3e6b42ccfc9271e792c0451406a4b57a143a58832d394187ccfc137bba56c3c6790819ab5005d0c8e86c4bef4893a3c35c874839fa372dd7fb8bd14
-
SSDEEP
3072:Jh1QObuGBLF89+rEjs0gDpd4C6bploxaZazEjvE/rbVkx9:/1db49+rEg024fpLZazEjvE/rbaH
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7807e7589e155e9197470e62d0246351_JaffaCakes118
Files
-
7807e7589e155e9197470e62d0246351_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 476KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 263KB - Virtual size: 264KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 35KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE