Behavioral task
behavioral1
Sample
03956ac00214473a2e7d7725f6d50822_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
03956ac00214473a2e7d7725f6d50822_JaffaCakes118
-
Size
1.2MB
-
MD5
03956ac00214473a2e7d7725f6d50822
-
SHA1
8dc3c613968ba2ff42b03775f66e5f4f881cc142
-
SHA256
fde928734fd50241a8027087012257c748d3b5cc0a762316b0b316a6beaa8257
-
SHA512
3155152762fc1f2aa22b337c9f7a119927696524ab1376398dc8b1835e1afa3360dbd7854cd15cc48d5d97e805c0230691fce0951afc6f610b5e2306ab0abb75
-
SSDEEP
24576:/xS2pjTo4TFoGohUaHBTUuxo6JoaxOczRk3kl0IfUTFof:/Y2pjM42uaHBTUuG6HOc1okjUI
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 03956ac00214473a2e7d7725f6d50822_JaffaCakes118
Files
-
03956ac00214473a2e7d7725f6d50822_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 588KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 195KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 107KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE