Behavioral task
behavioral1
Sample
d2e4714ec1783d7462773cb2f620fb75_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
d2e4714ec1783d7462773cb2f620fb75_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
d2e4714ec1783d7462773cb2f620fb75_JaffaCakes118
-
Size
41KB
-
MD5
d2e4714ec1783d7462773cb2f620fb75
-
SHA1
2c6f1f07a97fabff87ddbbed3848941e050fde2d
-
SHA256
26f731297dd91292ea4ab3b93ff891662a84eae3eefde82f798779eda57292a0
-
SHA512
af5050ac39fe37d2b9881b489480fabe85f7e48ab74f5daad7d6eb5c5abb6287e5c4bdf91c267e3539c7df725ed7e5c2a7030e726c96a1ad518b462bc5796236
-
SSDEEP
768:R8lkegU9n0cRshQPEXSz1ntoTjsTZB5qFBxUyMB3nbcuyD7U:4g05sh46y1twGZBkxU/Fnouy8
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d2e4714ec1783d7462773cb2f620fb75_JaffaCakes118
Files
-
d2e4714ec1783d7462773cb2f620fb75_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 76KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 39KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE