Behavioral task
behavioral1
Sample
ac922f6e00c4d8e8ec510431f794f2df_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
ac922f6e00c4d8e8ec510431f794f2df_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
ac922f6e00c4d8e8ec510431f794f2df_JaffaCakes118
-
Size
27KB
-
MD5
ac922f6e00c4d8e8ec510431f794f2df
-
SHA1
c1eb42f5d509ae0ca9bc3df769295966bac13edd
-
SHA256
71d03deebe2346f07cba3c849d9e9fc1aa38391f27b603d945a95e62b9cd11fb
-
SHA512
e0eff4120364bbf8e20f695dbf5598d3e7fbac2bd59b2134293590a7a6269ef8b0a4847ccfa74b35efb765d21a4686f66304738555b2d63c61b423ee525d6ae9
-
SSDEEP
384:spxNO/OjhgNA8OxDzCwRekWgflnd5u+5XzhufO/HL/KETrYv23A3XyYQd/fYEilj:EO26NA8QDtlfl3huyRs3XFy/ASBy
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ac922f6e00c4d8e8ec510431f794f2df_JaffaCakes118
Files
-
ac922f6e00c4d8e8ec510431f794f2df_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
UPX2 Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ