Behavioral task
behavioral1
Sample
bd7c7677769c08c0def1a71d8943a1c6_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
bd7c7677769c08c0def1a71d8943a1c6_JaffaCakes118
-
Size
784KB
-
MD5
bd7c7677769c08c0def1a71d8943a1c6
-
SHA1
a383b96e0e1a003453a226c645af67b134e87e9f
-
SHA256
213b8e0b484c3480df365a77db2f379941fdc01466c19b0a957ca08a347df878
-
SHA512
16edd8a7ba5d4f97dd86d0b1e58bf65a11c4479608c17a9e58e6361c80e445c5e158434cf44608cf438433b6a93e36e1a187da25f7bc539efd0e5edabad297c1
-
SSDEEP
24576:S3lMYOpYtW+l4u8hHdcxUZrZfpCOCkTaID5hc:SFtHauQHdcxkrxpPdtDP
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bd7c7677769c08c0def1a71d8943a1c6_JaffaCakes118
Files
-
bd7c7677769c08c0def1a71d8943a1c6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE