Behavioral task
behavioral1
Sample
8ed97ce1ad1500d147caea1876d633a9_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
8ed97ce1ad1500d147caea1876d633a9_JaffaCakes118
-
Size
1.7MB
-
MD5
8ed97ce1ad1500d147caea1876d633a9
-
SHA1
d9a421c5f0b9a13beedecfa25a7aa283d01593e2
-
SHA256
87592d08725349d36b89f4ef7960eea171463b8c165ccabcfb38c0f5b84df168
-
SHA512
9f3026b2edc5a64a31525259cfd3f5b4638de99c2a043206c5d54141ccf91da3da19f13156c12a49bd82028d9dd5e768963f236420a418ff481d17a5b9ffc610
-
SSDEEP
24576:SeT89y0U2J/7qgETSl+28/Vx7xkAGLWmkdKubqwtNuW8DuF:pTSm2JDzETSl+5VtSA4bezboiF
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8ed97ce1ad1500d147caea1876d633a9_JaffaCakes118
Files
-
8ed97ce1ad1500d147caea1876d633a9_JaffaCakes118.exe windows:9 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 472KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 998KB - Virtual size: 1000KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ