Behavioral task
behavioral1
Sample
8e2385f0fe08262fe540b15c072246a6_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
8e2385f0fe08262fe540b15c072246a6_JaffaCakes118
-
Size
253KB
-
MD5
8e2385f0fe08262fe540b15c072246a6
-
SHA1
342edb76327e629aa78fd6bcea126900da010e88
-
SHA256
799132a08f13d543ad9e009d030dea84d46b7a897aa57690f074bc40f0517210
-
SHA512
dc34b680e728e47e8645238ac1d15c2a3baa73df86ebe53087c90cc9852776f6658ee9d7aca1ea3d6db01580f06aaef4fdf2fb69a60f0a3e95b25cab54dc7ddc
-
SSDEEP
6144:XXq2WUlwiSEE5yVH/fvv5Dk4jEFe2PiM0/t1Iw6iM2xAhcDR5wxU/k:XyUlwfEE6/f544jEFJPiz11DpCKmOk
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8e2385f0fe08262fe540b15c072246a6_JaffaCakes118
Files
-
8e2385f0fe08262fe540b15c072246a6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 444KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 245KB - Virtual size: 248KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE