Behavioral task
behavioral1
Sample
c076459054752b9d74cab921aee2e4f5_JaffaCakes118.exe
Resource
win7-20240705-en
General
-
Target
c076459054752b9d74cab921aee2e4f5_JaffaCakes118
-
Size
46KB
-
MD5
c076459054752b9d74cab921aee2e4f5
-
SHA1
4e258d6698dc2920d17b048ae9b364282cc523c0
-
SHA256
932df2eef5aabe53beefdf96462a99ae5f7f1a471ded4f3e8420b64ce061a3e5
-
SHA512
57ee5c8f5711cc2bc97b83b5f00722a8dcbe807ddc87c65171407463d4f28452de0f2a1ded0d1428edb0672c1750186a4f97e0d6efc940b40927282021c0af1a
-
SSDEEP
768:RDeMFfFkb5v1aMXVyYUAEGe1xLQzeTVfSzK4GehMKz3z9+1+RHBZoaS0dxAs:nFNkVvTzUAEGeAzeTJSWZmDXRhZoafDb
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c076459054752b9d74cab921aee2e4f5_JaffaCakes118
Files
-
c076459054752b9d74cab921aee2e4f5_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 88KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 42KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
oiwin Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE