Behavioral task
behavioral1
Sample
d9bb35a1bce9812ac8dcaf9ff1c72c9c_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
d9bb35a1bce9812ac8dcaf9ff1c72c9c_JaffaCakes118
-
Size
231KB
-
MD5
d9bb35a1bce9812ac8dcaf9ff1c72c9c
-
SHA1
b5becbfc7adc8db0ba84a4d3fd3d5088617762b5
-
SHA256
cf9d97e31c5ca14bf80e8da2597b58a7bfbb229067a69ca5b86052d50bee08ee
-
SHA512
0a8f7e11b79c505d84b959eff9cf3aa703414893e6d158c995d91308a3c3c181ff0264bd1077486a062ef6627e7bc4835fde6627e2f32efb5caafbd553b9f569
-
SSDEEP
6144:JkKsFYG/FsDDxvuFzSyhU/r0tO4KOP3FnOKM0pRT9oS:JuyBWtSjriHP1OKPoS
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d9bb35a1bce9812ac8dcaf9ff1c72c9c_JaffaCakes118
Files
-
d9bb35a1bce9812ac8dcaf9ff1c72c9c_JaffaCakes118.exe windows:9 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 220KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 228KB - Virtual size: 228KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE