Behavioral task
behavioral1
Sample
ac390ed6a9932b5ab173dcf58c1b619a_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
ac390ed6a9932b5ab173dcf58c1b619a_JaffaCakes118
-
Size
193KB
-
MD5
ac390ed6a9932b5ab173dcf58c1b619a
-
SHA1
9fa1ce450736ace587ec31a049d2d23eb03bba99
-
SHA256
ee9af5f7eeab7daa296b8bc418cb4a72bc26552bdf8f06e32bbb14e7120a91c6
-
SHA512
41acff791e2c7d832b4c258c62eedc758a04ba70c9c7e624e9998eecd7757e2a08622050d7b79e6413fef8d41804e3c70de2c5df62ddcac1c9c7f62d86982a2d
-
SSDEEP
6144:O09StgxODWSh924mBz4Z6WNHqhOAKPyGZoS3:O0tYKyMx4M7KPHZoS3
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ac390ed6a9932b5ab173dcf58c1b619a_JaffaCakes118
Files
-
ac390ed6a9932b5ab173dcf58c1b619a_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 148KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 189KB - Virtual size: 192KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE