Behavioral task
behavioral1
Sample
b15fefe5c1a89ae3cfc2ce40b8a10d81_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b15fefe5c1a89ae3cfc2ce40b8a10d81_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b15fefe5c1a89ae3cfc2ce40b8a10d81_JaffaCakes118
-
Size
5KB
-
MD5
b15fefe5c1a89ae3cfc2ce40b8a10d81
-
SHA1
4ae218b3e006acedbc017c00b3ec1ff4195ea900
-
SHA256
d53352cac6f5efe65cd8e1a4bb9bf7c067da0599538959ad95be2f4db24cc865
-
SHA512
77499115068a57c7aec788d87e21e83ec536a7c9a12a5761d1c649fd3d323ad5b872aba8813bfcc287894579fc5fec33de06c119a05ea41d2be93a660ee75916
-
SSDEEP
96:PLcxiW1zTkUdX7faoq+QwtEjWL+A++1/5e92LnOxRmpgVZfRd5vM4fUHxvJXMbo:DqzYeXDamtM2R++bKAnODmiVZfRdFxMf
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b15fefe5c1a89ae3cfc2ce40b8a10d81_JaffaCakes118
Files
-
b15fefe5c1a89ae3cfc2ce40b8a10d81_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 36KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 27KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE