b6a2a799aeababad6cc905e52b0338ee_JaffaCakes118

General

Target

b6a2a799aeababad6cc905e52b0338ee_JaffaCakes118
Size

132KB
MD5

b6a2a799aeababad6cc905e52b0338ee
SHA1

3179c48c43b6915c4f24c58038aeb3b64b3f1aa2
SHA256

b23ae63fc27a2c6e3d4769a3b3c80f6c0dc418aa959b1c0643422c5e0b6d8a09
SHA512

96bcbbb27c5e6b8a1f26e24014224006db23d47bc1ca440886fd0a36d5895cf61c3d9523d0081744b975a1b9a946e6660691cf4c71ca05f78d47e45a657a0006
SSDEEP

3072:6KJz//Oa8656NEWnajzd3WDgOpZDb/QyNLjDYludyOX4vKG:xV/m5NZed3WDgOT1N/sluVX2KG

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
b6a2a799aeababad6cc905e52b0338ee_JaffaCakes118
unpack001/out.upx

Files

b6a2a799aeababad6cc905e52b0338ee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 123KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.mUZxuc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.q
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gdCzr
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.W
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.P
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CFTX
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.XHECy
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 52KB

UPX1 Size: 123KB - Virtual size: 124KB

.rsrc Size: 5KB - Virtual size: 8KB

Headers

File Characteristics

Sections

.mUZxuc Size: 4KB - Virtual size: 4KB

.q Size: 1KB - Virtual size: 1KB

.gdCzr Size: 2KB - Virtual size: 2KB

.W Size: 69KB - Virtual size: 69KB

.P Size: 1KB - Virtual size: 1KB

.CFTX Size: 60KB - Virtual size: 60KB

.XHECy Size: 3KB - Virtual size: 2KB

.rsrc Size: 5KB - Virtual size: 5KB

UPX0
Size: - Virtual size: 52KB

UPX1
Size: 123KB - Virtual size: 124KB

.rsrc
Size: 5KB - Virtual size: 8KB

.mUZxuc
Size: 4KB - Virtual size: 4KB

.q
Size: 1KB - Virtual size: 1KB

.gdCzr
Size: 2KB - Virtual size: 2KB

.W
Size: 69KB - Virtual size: 69KB

.P
Size: 1KB - Virtual size: 1KB

.CFTX
Size: 60KB - Virtual size: 60KB

.XHECy
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 5KB - Virtual size: 5KB