Behavioral task
behavioral1
Sample
bd3fb3de0fbf6567599e9c1d261e6c9a_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
bd3fb3de0fbf6567599e9c1d261e6c9a_JaffaCakes118
-
Size
446KB
-
MD5
bd3fb3de0fbf6567599e9c1d261e6c9a
-
SHA1
fe2a99c15c9f9d1c8a200524369d63ba1f618fb5
-
SHA256
fe5223e710e1dac1e200bbfb03f5d2cbe561f8c87858b4df67edc4163c2988bd
-
SHA512
37b80259a10f14bb7a462d8fa67af8b5b1cb690a766c5983c8214880cc3720dadf65460a28968da300d0cbf0ba1f85840fc8039d0723796ebf6b602ff0f5791a
-
SSDEEP
12288:yFmz0yvC0Sja6+uV2UnU9BZ5754KMIRkloITTIC/3zHmb:4meJD/3T
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bd3fb3de0fbf6567599e9c1d261e6c9a_JaffaCakes118
Files
-
bd3fb3de0fbf6567599e9c1d261e6c9a_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 232KB - Virtual size: 232KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 179KB - Virtual size: 180KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 34KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE