dae2a6e67a13ec081bbc41602def46c3_JaffaCakes118

General

Target

dae2a6e67a13ec081bbc41602def46c3_JaffaCakes118
Size

117KB
MD5

dae2a6e67a13ec081bbc41602def46c3
SHA1

25bf0e882ff35028a9e008eed0d1312a12d6e4d6
SHA256

fc656c335f24952f187ffe63a410903cf8c00d2a22e1f6daa3d674c152865fa3
SHA512

3720a84dbf05d268d8ee51c55fabb8841430ff7f9f44eb88ec738d72ae060eeb6ad59c97f3fbe57ddf5ddf5246b95af931739dbed9320fce673696f4945264dd
SSDEEP

1536:Mt/5o86BGNIwK7k9Y+Jj4OhpYJnxSBvPH8LotoEB5J1fky11hNvIQS+3bihjFZXc:q/5v6B2mv+9hpY3lLotb5TfkCrb+gW2

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
dae2a6e67a13ec081bbc41602def46c3_JaffaCakes118
unpack001/out.upx

Files

dae2a6e67a13ec081bbc41602def46c3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat_61
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 80KB

UPX1 Size: 108KB - Virtual size: 112KB

.rsrc Size: 8KB - Virtual size: 8KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 82KB - Virtual size: 82KB

.idat_61 Size: 25KB - Virtual size: 24KB

.data Size: 48KB - Virtual size: 48KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 512B - Virtual size: 408B

UPX0
Size: - Virtual size: 80KB

UPX1
Size: 108KB - Virtual size: 112KB

.rsrc
Size: 8KB - Virtual size: 8KB

.text
Size: 82KB - Virtual size: 82KB

.idat_61
Size: 25KB - Virtual size: 24KB

.data
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 512B - Virtual size: 408B