Behavioral task
behavioral1
Sample
cec325c0d90f206a0f777c9f3c292732_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
cec325c0d90f206a0f777c9f3c292732_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
cec325c0d90f206a0f777c9f3c292732_JaffaCakes118
-
Size
40KB
-
MD5
cec325c0d90f206a0f777c9f3c292732
-
SHA1
f9c0407b599ecfb3bec83bcac426adacda4d4777
-
SHA256
d25291d6f38989ca36843227bd96fd06e96054d35adfbe39a4d4d16091578578
-
SHA512
340d0e59cc0d564024c956dc212bbb281b79b95c26aaf33eb30b7024e3a2a157e59f4db7c616f3a97dbc12154ed4329ecbdafc7e57a07154b2bba0abcff42ee7
-
SSDEEP
768:aq9m/ZsybSg2ts4L3RLc/qjhsKmHbk1+qJ0UtH+hU:aqk/Zdic/qjh8w19JDH+2
Malware Config
Signatures
-
Detects MyDoom family 1 IoCs
resource yara_rule sample family_mydoom -
Mydoom family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cec325c0d90f206a0f777c9f3c292732_JaffaCakes118
Files
-
cec325c0d90f206a0f777c9f3c292732_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ