Behavioral task
behavioral1
Sample
d0516d73f756dc54117bb35fb35b4ed4_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
d0516d73f756dc54117bb35fb35b4ed4_JaffaCakes118
-
Size
784KB
-
MD5
d0516d73f756dc54117bb35fb35b4ed4
-
SHA1
e7a9a725e9a7eb9ebfcb63c9d37d473abdac152d
-
SHA256
20d73608a47a5d6e6e02ea30084e26fa3c11d87a89972fdc380c5731ff5677b9
-
SHA512
1cf78291aa1af8e39b300c4a10f6463b6e2db73cec27ebb2587611db8e1ec58026050acae5bb2bc9f62fd9da6ee656eceb5d7921c79238980c37d5417985fab7
-
SSDEEP
24576:Ax78ZdxIhVUYj/XpkNBQF6fYmrOZUMDs:tZd9YjjqYmrOi9
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d0516d73f756dc54117bb35fb35b4ed4_JaffaCakes118
Files
-
d0516d73f756dc54117bb35fb35b4ed4_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE