Behavioral task
behavioral1
Sample
a79107acb35436d35a81f0d7a357b777_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
a79107acb35436d35a81f0d7a357b777_JaffaCakes118
-
Size
84KB
-
MD5
a79107acb35436d35a81f0d7a357b777
-
SHA1
b420744e50b016f37efa75af49632a299e84b561
-
SHA256
7995d30a3295f4fc38e68870e0ee69eaae2e9b2390d9a776891ec501feb06968
-
SHA512
d8036c64751db1d16da31919d9727a0b8a48059ccd68f48b6904965d5ef2f996a8514fda3c85726f4407900e3f0ab081427584dbc298064ae2abbe5196d907bf
-
SSDEEP
1536:PapTnMaloe45GTPS6X2BjEhb3sjIT1DrGf40ysOh+IatfYMVqhQ7ginJ6pdiigSN:CpbBloP58a6Xm+ovhS5
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a79107acb35436d35a81f0d7a357b777_JaffaCakes118
Files
-
a79107acb35436d35a81f0d7a357b777_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 60KB - Virtual size: 60KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 19KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE