Runed
Behavioral task
behavioral1
Sample
c7f75d0a3880f151a41630c427379cc3_JaffaCakes118.dll
Resource
win7-20240704-en
General
-
Target
c7f75d0a3880f151a41630c427379cc3_JaffaCakes118
-
Size
83KB
-
MD5
c7f75d0a3880f151a41630c427379cc3
-
SHA1
c5f147e08b003334f06a1fe762a381cbd5c42ed7
-
SHA256
e691a2ab8041c7c7a9ae3b7e62908e25f7bbad92ae9d06dbcd6fdd0f16e5f29c
-
SHA512
7b6d51eafb8f2b8c16d22148eabe8a5af7f66c83726033397b8100ff075723d6f16e6f074dd44e0feea8384c405f3f6ae0be88cf0bd7e157b9fe39a8402b15ed
-
SSDEEP
768:Y3jToCVd5SF2peDw8T84nBegW7FfR2c9bYsaV14ludCWVWptEOmVL:wF5SF2pe88T8iBegiR2cTa4yCntEX
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c7f75d0a3880f151a41630c427379cc3_JaffaCakes118
Files
-
c7f75d0a3880f151a41630c427379cc3_JaffaCakes118.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Exports
Exports
Sections
UPX0 Size: 48KB - Virtual size: 48KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE