Behavioral task
behavioral1
Sample
ef18040fd4751dcffaf826f1dd5bfac3_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
ef18040fd4751dcffaf826f1dd5bfac3_JaffaCakes118
-
Size
105KB
-
MD5
ef18040fd4751dcffaf826f1dd5bfac3
-
SHA1
181bbd0071fb0d84af14a26e0f28d57c8cebe96c
-
SHA256
013616d112343959312ed1f4303ac9358d8452837fecfe59f436f5a966089cfd
-
SHA512
c81d2957122292bcee9cd1bf14dc7f041c0a670a0991e825cf6f17ba180c3bb3e3798fb09e9b9e07ffdb70355d8c4dd37797d941291d84c3273c261d5a9a6634
-
SSDEEP
1536:sT8kfjTGExkipzXOTSIWkc+bX6XjNjioLiju5ZsZ0dE:y7fj6EvJ+Trc6aJj32q5P
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ef18040fd4751dcffaf826f1dd5bfac3_JaffaCakes118
Files
-
ef18040fd4751dcffaf826f1dd5bfac3_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE