Behavioral task
behavioral1
Sample
aab18f2e830471304b4499072e5c6962_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
aab18f2e830471304b4499072e5c6962_JaffaCakes118
-
Size
2.3MB
-
MD5
aab18f2e830471304b4499072e5c6962
-
SHA1
65e6ace4134629d86018a6f4bceae4e306be377c
-
SHA256
bbe8c4006fd773db2318537c146c882c566c610fcfd7b313ac446b3c16bf598c
-
SHA512
0fe37e2558ae9a7272232c66a7da83cef5f00c87b9679d5f36f272ecda024f1819f695b1323cf4a12b6ce24d523efc44d19d509d3850f362a57564d09d8867bc
-
SSDEEP
49152:P0QPqIy6Y0jvfr1nACVpAuFdwq/mWrkjshu1m5KrTV6INSfDb98mwrr:P0HALZACISqq/mQkj4u1wK/V6Vbbqm6
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource aab18f2e830471304b4499072e5c6962_JaffaCakes118
Files
-
aab18f2e830471304b4499072e5c6962_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE