Behavioral task
behavioral1
Sample
f660506dd6d381daf3ad9bb0f1be2ddb_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
f660506dd6d381daf3ad9bb0f1be2ddb_JaffaCakes118
-
Size
207KB
-
MD5
f660506dd6d381daf3ad9bb0f1be2ddb
-
SHA1
bf6f38e3de9a73745eec05e69d592c0c8d0aa6c4
-
SHA256
7fceea635eab43dff1a25ceff82061a6fe3c95d5f3f822660cce5d8ba3980c71
-
SHA512
c93481dfb204f1f75fa30c97b861ed97d8471bc21b67f5b541384fa6bf88920fcc9228f9ab9480a50aad56879e1112bf4be77c28a11e7d9e38e03ee65107e802
-
SSDEEP
768:CQ4Wk9UQ9qnB7+Xf5oi79q4xdVkmfL385OmvSKPypjHdFq23gsCq23gsYq23gsD:89UUqlCf5oh43+8M5OmaKKpjXAOf
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f660506dd6d381daf3ad9bb0f1be2ddb_JaffaCakes118
Files
-
f660506dd6d381daf3ad9bb0f1be2ddb_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 176KB - Virtual size: 176KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 25KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE