Behavioral task
behavioral1
Sample
a8846042cceaa28295323369e532b63b_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
a8846042cceaa28295323369e532b63b_JaffaCakes118
-
Size
1.2MB
-
MD5
a8846042cceaa28295323369e532b63b
-
SHA1
37cf684bcc9afbfe69510d69b54aef1baa030697
-
SHA256
4f5755a106d371e5d6568452d2507637c28ff6c4d3e596254c9efc6c3358f05d
-
SHA512
34f72a74f83015a0f7882285cd8214b82e5c59e9c21a3727db81a04483788199877a15099ad721646ced444e073648b0d2de54cea3625a104f7340f870dcf2c8
-
SSDEEP
24576:OpmC9JpouTFoGohUaHBTUuxo6JoaxOczRk3kl0IfUTFof:sleu2uaHBTUuG6HOc1okjUI
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a8846042cceaa28295323369e532b63b_JaffaCakes118
Files
-
a8846042cceaa28295323369e532b63b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 588KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 195KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE