Behavioral task
behavioral1
Sample
d383c16796c309b989d5beea2048de88_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
d383c16796c309b989d5beea2048de88_JaffaCakes118
-
Size
123KB
-
MD5
d383c16796c309b989d5beea2048de88
-
SHA1
8ecb093368fe28448f98358f590e0caf7ef1eec5
-
SHA256
1fc2bfbe66a0dd7ac8c131f9660e236f04bc55f8f295755f3a67fc7579ca8a7f
-
SHA512
2f5c57da4451b111bb5a821450a0841240d9656dfe588d7aab653547369f983640029da0c7e33d888669dfbfa20c17d3b3f66f8f7c848ebfef39d27ff78fec19
-
SSDEEP
3072:teSQ41MZrrOwzrq5Ss9eYfphfFQkUcot3EpeBWLsDu:tVYrJrOSsRwcpWu
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d383c16796c309b989d5beea2048de88_JaffaCakes118
Files
-
d383c16796c309b989d5beea2048de88_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
42vab535 Size: 62B - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
oqvrztrg Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ