Behavioral task
behavioral1
Sample
dd09b9e7721682c3a289c6997283153a_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
dd09b9e7721682c3a289c6997283153a_JaffaCakes118
-
Size
784KB
-
MD5
dd09b9e7721682c3a289c6997283153a
-
SHA1
36509d33b0e8d318887488d04e96a21f8196a42b
-
SHA256
ef57c581f21b4d885c53ef421b0034cd85dace44bc883a7c2488e6b8b4dc69ce
-
SHA512
164da64544f8ddc373a805e7b282aa984a2067143ebeb7af0d6bad1c77e9a5b9e885f36f2fdce28412ad908ff0e204de391bee74be70a4155e4e5b0af35feb85
-
SSDEEP
12288:9Ec0pla1ldABkrjGii13M3Ah2JYqsymZHREJZM2qm1dFYVpisoTqPkPD:Cc0plC6Bk/iq3Ah2eby3qEv73PD
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dd09b9e7721682c3a289c6997283153a_JaffaCakes118
Files
-
dd09b9e7721682c3a289c6997283153a_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 2.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 783KB - Virtual size: 784KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE