Behavioral task
behavioral1
Sample
85dd4afe633b82ea05601b638e8cdcd6_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
85dd4afe633b82ea05601b638e8cdcd6_JaffaCakes118
-
Size
34KB
-
MD5
85dd4afe633b82ea05601b638e8cdcd6
-
SHA1
f9e502ba6e3419a2de4f1799fc9444349a088508
-
SHA256
2417b0e8e7c8315305c8bfcb9ba40a2c04ed3ede89984e78fe7a1ba2cb2f2eaf
-
SHA512
dd6a95a5bc9f68f38267f9bb4da804bc3ba75f2c3eeea25c6bfc4ad9283dcc5e86ba673c1ce7f914f7d2c5e67699b372c1ed3261edc16bbdb364a21e81c41c06
-
SSDEEP
768:h3JWSrLMBZ1Bi24X7pyH0VWNm4qU2gin1oghX0AenbcuyD7U0:pJliAXVtVWNm4qWM5Ednouy8
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 85dd4afe633b82ea05601b638e8cdcd6_JaffaCakes118
Files
-
85dd4afe633b82ea05601b638e8cdcd6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 52KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE