d28297b03318788ce2c2b235d75283c8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d28297b03318788ce2c2b235d75283c8_JaffaCakes118
Size

56KB
MD5

d28297b03318788ce2c2b235d75283c8
SHA1

3a06a57b092f35f4779958118d9c9f10b2567d0a
SHA256

06d5450340bc937c64cba243e06b743db3686ba23712204db4a9ebf98ea29f80
SHA512

ad57f9dc04554bd980a7aa7f96f914b7d3f33a97a4f3491f6943d7144759f5558a1b7c8a433a591bc38f20fddb99cb0d74069a86bfc288c12b13221d990a77d0
SSDEEP

768:HJE3pyrquTZ26I//Nah32X8aSUPjylqi63rUzWlC191v1WYPud/fT0w3nzWAw2/7:GpyrvlQ/laSXjwgrUzWlCBPUBXqAw2/7

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
d28297b03318788ce2c2b235d75283c8_JaffaCakes118
unpack001/out.upx

Files

d28297b03318788ce2c2b235d75283c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/14
Size: 512B - Virtual size: 32B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 512B - Virtual size: 54B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 512B - Virtual size: 372B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 512B - Virtual size: 353B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/83
Size: 512B - Virtual size: 64B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/96
Size: 512B - Virtual size: 318B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/107
Size: 512B - Virtual size: 128B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.7MB

UPX1 Size: 34KB - Virtual size: 36KB

UPX2 Size: 512B - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 56KB - Virtual size: 56KB

.data Size: 5KB - Virtual size: 5KB

/4 Size: 512B - Virtual size: 4B

.bss Size: - Virtual size: 1.6MB

.idata Size: 1KB - Virtual size: 1KB

/14 Size: 512B - Virtual size: 32B

/29 Size: 512B - Virtual size: 54B

/45 Size: 2KB - Virtual size: 1KB

/57 Size: 512B - Virtual size: 372B

/71 Size: 512B - Virtual size: 353B

/83 Size: 512B - Virtual size: 64B

/96 Size: 512B - Virtual size: 318B

/107 Size: 512B - Virtual size: 128B

UPX0
Size: - Virtual size: 1.7MB

UPX1
Size: 34KB - Virtual size: 36KB

UPX2
Size: 512B - Virtual size: 4KB

.text
Size: 56KB - Virtual size: 56KB

.data
Size: 5KB - Virtual size: 5KB

/4
Size: 512B - Virtual size: 4B

.bss
Size: - Virtual size: 1.6MB

.idata
Size: 1KB - Virtual size: 1KB

/14
Size: 512B - Virtual size: 32B

/29
Size: 512B - Virtual size: 54B

/45
Size: 2KB - Virtual size: 1KB

/57
Size: 512B - Virtual size: 372B

/71
Size: 512B - Virtual size: 353B

/83
Size: 512B - Virtual size: 64B

/96
Size: 512B - Virtual size: 318B

/107
Size: 512B - Virtual size: 128B