Behavioral task
behavioral1
Sample
949e5d18b7b98b0a7ed909b71f51ea3f_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
949e5d18b7b98b0a7ed909b71f51ea3f_JaffaCakes118
-
Size
100KB
-
MD5
949e5d18b7b98b0a7ed909b71f51ea3f
-
SHA1
c30d8f477f3f38b4a77cbb41678acc8068fee9e5
-
SHA256
4c61cc1fbc1f0846ab7be825098fd3f884fe097446ca503ffa9fd47b2d5e69fc
-
SHA512
f65497bfd0f28b4acc17c000f95e726ada543c26a800d9400b3c901d81aacaf4147add36a81111d18810c77d1e5aca0bcb77decd0bbfb8ff02a7414d503668c6
-
SSDEEP
3072:40G//xMadTOBbZyownhw3w8EeiscG4WMCt/:tGhbKKownhGEvscGWs
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 949e5d18b7b98b0a7ed909b71f51ea3f_JaffaCakes118
Files
-
949e5d18b7b98b0a7ed909b71f51ea3f_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 52KB - Virtual size: 52KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 46KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE