Behavioral task
behavioral1
Sample
a2d1e78587b95d1df8c8ba38b91de071_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
a2d1e78587b95d1df8c8ba38b91de071_JaffaCakes118
-
Size
87KB
-
MD5
a2d1e78587b95d1df8c8ba38b91de071
-
SHA1
2ebcebf689525a986d6e2696d36e2b03429e3535
-
SHA256
f402d8d90abfcfcb32a56bbfd2681cda07dd7f6333137a309de5623634069c56
-
SHA512
15f33f5c76494da1391e6882b292b8104960ef089658ec02363fd8101ac533edab5c25d01e1293c26ad9b5b61fb89f7d47f6c947bf801bb28ee886ab70694c33
-
SSDEEP
1536:mS7xh0JCQxyLsGz7uxGhc1ON26/e9rs9p8mgQj3GqH8q:jN+J2LsGPh3JcsDrDG4
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a2d1e78587b95d1df8c8ba38b91de071_JaffaCakes118
Files
-
a2d1e78587b95d1df8c8ba38b91de071_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 37KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE