Behavioral task
behavioral1
Sample
b9c758c27e0b215b6ff417c0d2fca168_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b9c758c27e0b215b6ff417c0d2fca168_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b9c758c27e0b215b6ff417c0d2fca168_JaffaCakes118
-
Size
5KB
-
MD5
b9c758c27e0b215b6ff417c0d2fca168
-
SHA1
13d82b28d761fa7169e3d26228a984d9d35d98e7
-
SHA256
d0da26363f46560f1b4eb6175c6a6da3b0011dd18418c30d977a990a38c4286e
-
SHA512
e69453b8def57a42ead0f857f9de2a1833c420fef4d1b854f24820956a455b8bc78fe6bbc8bf38d8212745f0a9e9bd07477ef458b15440e658db4b70cadb830f
-
SSDEEP
96:s6F5yh5K03v5Z5rhKH+OSQQLA+UKqNOBG1+aDsQezv9vt//Of:s6F5qU03vl0H+YQ5UKqNOBI+aDsQezve
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b9c758c27e0b215b6ff417c0d2fca168_JaffaCakes118
Files
-
b9c758c27e0b215b6ff417c0d2fca168_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 1.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 43KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE