Behavioral task
behavioral1
Sample
842f6b45201d4623f6b2fe925ccf5bc6_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
842f6b45201d4623f6b2fe925ccf5bc6_JaffaCakes118
-
Size
784KB
-
MD5
842f6b45201d4623f6b2fe925ccf5bc6
-
SHA1
1ca9179ca5177e0a531f5b91b3a170c697744b87
-
SHA256
7a9c3c480e629e087f3e24c3c1517ccca8ff81bca3a6a6a17f35bcc04aa11dae
-
SHA512
a674e874b097abc530f1683b06af1eaa458081fe6b8cc26e0c98856c930e5747dafe7954a803a8347cc63bc01d926d3356b24a29d846dfdf1f1e53106b062a11
-
SSDEEP
12288:Gx9sj8c9NmYMkM2p6DgvLpcb2fBfXPoKC8AIQEC6zTPeuZJJNAxjEzhiZN4oUu:6w8c9NPzpNOboXgKC8AIQEpG8LM2iJn
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 842f6b45201d4623f6b2fe925ccf5bc6_JaffaCakes118
Files
-
842f6b45201d4623f6b2fe925ccf5bc6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE