Behavioral task
behavioral1
Sample
aa0f7336fe2f8c4424cc201ab3feadf1_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
aa0f7336fe2f8c4424cc201ab3feadf1_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
aa0f7336fe2f8c4424cc201ab3feadf1_JaffaCakes118
-
Size
139KB
-
MD5
aa0f7336fe2f8c4424cc201ab3feadf1
-
SHA1
279004fa07d4c795f0edb05ef9e9f9c2079d0886
-
SHA256
c01f511a521aadecad00f94bf8945c9c7792220eb9bf365103591e6d7e64e323
-
SHA512
a76d50b279aee3b9a35b6546aea42a379fbad2283d84a3092ef80e54e23fd674658c3a87561d9ebd5931fd0fcf2ceec10e0a54eb1a0da249ba437e9cc149723a
-
SSDEEP
3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource aa0f7336fe2f8c4424cc201ab3feadf1_JaffaCakes118
Files
-
aa0f7336fe2f8c4424cc201ab3feadf1_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 220KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 127KB - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE