Behavioral task
behavioral1
Sample
c10020d274ad65d7fed948f6af367f87_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
c10020d274ad65d7fed948f6af367f87_JaffaCakes118
-
Size
56KB
-
MD5
c10020d274ad65d7fed948f6af367f87
-
SHA1
a53620eb8fa1dbfb6d8446b8ad671874b24b7260
-
SHA256
66961574cb68ef11ea4734292217cf6910f8eb85bf403a1d2ba1ead88c9d92af
-
SHA512
eab22d532fb9975d08fba990bc1029dedaca7914dccf4a0925fdae16fd1e7bdd0c59358c4bbb0bdc3b0e1a0215e7150c4cfe19276e1b48eddd331b43b63cf979
-
SSDEEP
1536:7mF9XWe6xwR6Am3smJvu57JrLtSI3ii9:C9mZxwR6Am3smitngkii9
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c10020d274ad65d7fed948f6af367f87_JaffaCakes118
Files
-
c10020d274ad65d7fed948f6af367f87_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 168KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 55KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE