Behavioral task
behavioral1
Sample
b9fbf0d47f392ee64360b22dd744ca38_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
b9fbf0d47f392ee64360b22dd744ca38_JaffaCakes118
-
Size
784KB
-
MD5
b9fbf0d47f392ee64360b22dd744ca38
-
SHA1
977b53efea3b39992e0a1be915c2bb4c1149bb70
-
SHA256
357cc72742399c88719b198ed3b73d44272372de164d2f5161acc755f203a838
-
SHA512
ba351040413372ac67328e4b2d4d54b53da267589eca6c9378fab227321a75d3e46182254c1cbe1a7dcffc348c80ff907f9d77e8fca1ff33bc2c2ced3d104076
-
SSDEEP
12288:vayaL83TmEmOB2DIqVE7t4I6rf+mx93aCWUvu6wTg4NDFFh4GPvgY:varHROgDIqVo9EL3aIcDlF
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b9fbf0d47f392ee64360b22dd744ca38_JaffaCakes118
Files
-
b9fbf0d47f392ee64360b22dd744ca38_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE