8881ff81715dd0296cc1e3177c608136_JaffaCakes118

General

Target

8881ff81715dd0296cc1e3177c608136_JaffaCakes118
Size

181KB
MD5

8881ff81715dd0296cc1e3177c608136
SHA1

a5213adc5739a15fded66a0b582c9b347d8c3e13
SHA256

7d13a65a13201caabc207fcae4779709884fd40c6f7b2b257470bacab1242974
SHA512

f0212fdda49bdd455c3af98d2c888e36de4ee90d2f631c788e88f06b190fe2335fc161f115cf0c6f9dbdd4f518abda36dd0ecec44aa97bb48ef075ace893be63
SSDEEP

3072:VIydRaFQ/esbJ6ji6zh8Gaf6a7OMIVfipEyxxBRsmVbp6cdVs8WgqDZa9B:VDza+msrkqBzIopEyxDRVbp6OsJla

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
8881ff81715dd0296cc1e3177c608136_JaffaCakes118
unpack001/out.upx

Files

8881ff81715dd0296cc1e3177c608136_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 178KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_DLL
IMAGE_FILE_UP_SYSTEM_ONLY
IMAGE_FILE_BYTES_REVERSED_HI

Sections

��"(��3�
Size: 512B - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

h#�_iI�
Size: 1024B - Virtual size: 813B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

y��|��
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

I`Y��C�
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

w�J��B�
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

R��|�
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

y?�r��
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 68KB

UPX1 Size: 178KB - Virtual size: 180KB

.rsrc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Sections

��"(��3� Size: 512B - Virtual size: 3KB

h#�_iI� Size: 1024B - Virtual size: 813B

y���|�� Size: 204KB - Virtual size: 203KB

I`Y���C� Size: - Virtual size: 3KB

w�J��B� Size: 5KB - Virtual size: 5KB

R���|� Size: 12KB - Virtual size: 11KB

y?�r�� Size: 1KB - Virtual size: 1KB

UPX0
Size: - Virtual size: 68KB

UPX1
Size: 178KB - Virtual size: 180KB

.rsrc
Size: 2KB - Virtual size: 4KB

��"(��3�
Size: 512B - Virtual size: 3KB

h#�_iI�
Size: 1024B - Virtual size: 813B

y��|��
Size: 204KB - Virtual size: 203KB

I`Y��C�
Size: - Virtual size: 3KB

w�J��B�
Size: 5KB - Virtual size: 5KB

R��|�
Size: 12KB - Virtual size: 11KB

y?�r��
Size: 1KB - Virtual size: 1KB