Behavioral task
behavioral1
Sample
b896a117663d409732487ea51a7fb2f1_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
b896a117663d409732487ea51a7fb2f1_JaffaCakes118
-
Size
654KB
-
MD5
b896a117663d409732487ea51a7fb2f1
-
SHA1
feae5cb29d35d9cc2404f2ac75c438e34bae4883
-
SHA256
a53563c272155d20356b229040bb04e8a6b5ac4df5a71ee5688bcca7b10a0479
-
SHA512
cd70811cdbb4c2fd44f899fe76847fd5b1b6202516005081024824a33832335400c9c1355813756923f44387873eaf15e3fcd2a24c1898b8423f9831dddd994f
-
SSDEEP
12288:UVPkWX99rdNI2NoAxKGnX+PI2Rgsnv1rwJv0NeMe6kNkZCgCj7XfJAMoS:Fu02/ndNuNdkNkqLJ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b896a117663d409732487ea51a7fb2f1_JaffaCakes118
Files
-
b896a117663d409732487ea51a7fb2f1_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 1.0MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 644KB - Virtual size: 644KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE