Behavioral task
behavioral1
Sample
03af54b7f5729fd3a204443374312efc_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
03af54b7f5729fd3a204443374312efc_JaffaCakes118
-
Size
202KB
-
MD5
03af54b7f5729fd3a204443374312efc
-
SHA1
e9107c94a87a8e9022ad3a5ba5972e83aeb88e64
-
SHA256
aeb9802e0339dcc352c3475bbf5c3b12f22d2024bc7f5adfa01f5f5cb9f3ea8d
-
SHA512
a9af057089374317075c0b3bc55748dc9ae3110ff2306f62a9f2ef094b5fbe7fec2490d5ab5c4ab793b1b472a39fcce65472b957974a8eb1bf99c217d7e94ff3
-
SSDEEP
6144:mCbitvA8lUcv6Jvr03OWAgCC7RSKDkoShsG:mC+tvA8pv6e3OSCCFSKDkoSj
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 03af54b7f5729fd3a204443374312efc_JaffaCakes118
Files
-
03af54b7f5729fd3a204443374312efc_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 260KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 195KB - Virtual size: 196KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE