Behavioral task
behavioral1
Sample
d235531cafbaf0f4f14ac29720bb2b81_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
d235531cafbaf0f4f14ac29720bb2b81_JaffaCakes118
-
Size
35KB
-
MD5
d235531cafbaf0f4f14ac29720bb2b81
-
SHA1
836a2a42623196751ac17e5c7494638163c080d3
-
SHA256
e6c6bdafb83e7a714b779b29771200910b91cfb677a2bc4d638c7584e2df93c3
-
SHA512
d844bae677541d56568050e183c7ea90e665e3254fe28f27a84c97e772681b527d5114b68bfc90802ef28c1ed74f284552e5355ff59e6191d04164996b58a7cf
-
SSDEEP
768:Wv5WyrcZn3WXmQxdDrWY2by5rSFYjP+MWbjdeJGJD:WcZnXQHfWY2byh4SPW36GJ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d235531cafbaf0f4f14ac29720bb2b81_JaffaCakes118
Files
-
d235531cafbaf0f4f14ac29720bb2b81_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 168KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 31KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE