Behavioral task
behavioral1
Sample
86a33b0705d3e9c0a3b1d8463227f97b_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
86a33b0705d3e9c0a3b1d8463227f97b_JaffaCakes118
-
Size
200KB
-
MD5
86a33b0705d3e9c0a3b1d8463227f97b
-
SHA1
f74bc6322f55598d5a9e053407b9f3e580f6d4bb
-
SHA256
b2fea0a3953a12b265815d88ad4662f5ed5df35a00ea9a9a201f3cb3b46f741d
-
SHA512
ce7ecd64f333fd687a5c90cd961e4bb972061d42024b18b69a0ea126ffa71e58c31d5069662610b0d151cc808f09513254ab0a38e725b1b03a4aeb461b673180
-
SSDEEP
6144:5vPzpBr5TzFyhDQPAtAkC6vTCpa7qT92+KK2v:5vLzNTQQPAtBCYOyq0r
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 86a33b0705d3e9c0a3b1d8463227f97b_JaffaCakes118
Files
-
86a33b0705d3e9c0a3b1d8463227f97b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 52KB - Virtual size: 52KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 130KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE