Behavioral task
behavioral1
Sample
a21eb98ccfd6945d439233cadb6fd0ef_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
a21eb98ccfd6945d439233cadb6fd0ef_JaffaCakes118
-
Size
175KB
-
MD5
a21eb98ccfd6945d439233cadb6fd0ef
-
SHA1
86d12ca621eddd3fecad9aca1ec4fc2f5e9418e6
-
SHA256
99297470b86152713289fbb65afdaa5e473e6dab367ca3bd836c623c94d8b2e5
-
SHA512
1800683b3beea546168925726d7214d80f8dd6f5ceb3d833585f2bd83fbacda316d93badda1fd00112b7a49e8d2f571e4890370f8ae7504d77b338b46a133c80
-
SSDEEP
1536:5fuDBNMuKN2EIrS9QRu7YwlS0/4kwHuTthFzBg0UE9xmAsm4B:RSMUPS9+6jU0/2yKTSmFB
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a21eb98ccfd6945d439233cadb6fd0ef_JaffaCakes118
Files
-
a21eb98ccfd6945d439233cadb6fd0ef_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 120KB - Virtual size: 120KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 51KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE