Behavioral task
behavioral1
Sample
b6ea4bc4520ec5c4b2153a6bb91de8c6_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
b6ea4bc4520ec5c4b2153a6bb91de8c6_JaffaCakes118
-
Size
78KB
-
MD5
b6ea4bc4520ec5c4b2153a6bb91de8c6
-
SHA1
7ad012edf8e1196ef8e6f3591fa3bfbf3fad12ff
-
SHA256
5810bc1d3ab4e8f80f98039a56b68558b0a85335fcbf444b31d3fe1f305c48ab
-
SHA512
6b2a8ef113006c7e449a684aeb53adaeaf97c614727fbe4c71dcdbd77ba1dd2e73470740ec23cb70d592f755e5a3bd27f7383c5ca21c3a7d952a004fd377179b
-
SSDEEP
1536:nnhTaYaG/KHp37a7tplAHd5LR4osJdDQi:ZafG/KHp37Ld5LR4xDQi
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b6ea4bc4520ec5c4b2153a6bb91de8c6_JaffaCakes118
Files
-
b6ea4bc4520ec5c4b2153a6bb91de8c6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 56KB - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 14KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE