Behavioral task
behavioral1
Sample
8a0cae26d6f2ee387660fbb5d60e6e49_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
8a0cae26d6f2ee387660fbb5d60e6e49_JaffaCakes118
-
Size
214KB
-
MD5
8a0cae26d6f2ee387660fbb5d60e6e49
-
SHA1
630014574f813385f2288fd068969470238a49b1
-
SHA256
54335a584a9d1551667b45487297ac61facd1cd60b3b4a69855c527fdcd38e1e
-
SHA512
975edaf745d7bcf13123299930c1fa1fcb5b382395936670b3ae822f9c98d8272ba70cfb012d25a18180ffe59490d4bfc16547af8500817b2477e062510a8fd3
-
SSDEEP
6144:RJmywoSgRU1X3nAw2EBDXQBcF0iib1CEjCUG3lx46oS:RkaSgRU1nAlENqi9JU2lxHoS
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8a0cae26d6f2ee387660fbb5d60e6e49_JaffaCakes118
Files
-
8a0cae26d6f2ee387660fbb5d60e6e49_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 424KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 211KB - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE