Behavioral task
behavioral1
Sample
c86f09ae24f4fce41fdf5e2e64c67013_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
c86f09ae24f4fce41fdf5e2e64c67013_JaffaCakes118
-
Size
10KB
-
MD5
c86f09ae24f4fce41fdf5e2e64c67013
-
SHA1
a71462304d4a0e3bb5b57ab85051c8e718def3ee
-
SHA256
c2735a3ae0f75b77a2d889a8664c1e00ad4f969e26da935df6b2a743740a8082
-
SHA512
7baa4f2a4cf75acc6bb45eafb729d9d9d706dcfc2221895d0e0faf6f58bbe55935321b821ca4efe4d655f402d488769224799becc916b75a81ad7ee4a9f8b50a
-
SSDEEP
192:XZN91IRGKMeoTVNCdXmkcTqHCROyPaNWLsz1FaNJhLkwcud2DH9VwGfctdE:T9GRVdoT7Cd2/CuOrNWL6jaNJawcudoJ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c86f09ae24f4fce41fdf5e2e64c67013_JaffaCakes118
Files
-
c86f09ae24f4fce41fdf5e2e64c67013_JaffaCakes118.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 28KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE