Behavioral task
behavioral1
Sample
d4084f5fadf06bff77479dc81ce94525_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
d4084f5fadf06bff77479dc81ce94525_JaffaCakes118
-
Size
87KB
-
MD5
d4084f5fadf06bff77479dc81ce94525
-
SHA1
6b2bad0e0c8747618c768e0376fd86dc87a1ed9c
-
SHA256
370eb97c9ced465e90d547f32bab24fafaa9e82ef386edb1496918b035465db0
-
SHA512
7fd13853bd0886818e063f0d68673ec92c7f57151bb82daeab05518fdb4f0f20bbfd55f45d95abc82de0bf162f11c4d7b4bd1832b980304e0316aa06d7671af6
-
SSDEEP
1536:wj2pc+WyvEDOCtwif7QinUxfo8a1jFIT5mY0jF/OMMZs3MEsfNPC8sZ:/pc+WystwQ7NnWoBFIT5mY0p/OB5Bfp
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d4084f5fadf06bff77479dc81ce94525_JaffaCakes118
Files
-
d4084f5fadf06bff77479dc81ce94525_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 38KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE