Behavioral task
behavioral1
Sample
020ae46ff0e70d02bc6ac791c1271739_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
020ae46ff0e70d02bc6ac791c1271739_JaffaCakes118
-
Size
103KB
-
MD5
020ae46ff0e70d02bc6ac791c1271739
-
SHA1
016ac8b7f68bd84def02694ff086b6de88db4419
-
SHA256
bccc588e1aa73863afee04318e43b489b4928e984932f561a49d4e3918ea1721
-
SHA512
d7fc9473832884e78920a0eac0bdc8288b1450f9c66844db0e8c0e1794b2ae04956021e92bd9a859f500131c2056b0cab4132aff870a71c0ea1260dace43beaa
-
SSDEEP
3072:KXueThM2qu0ecibNCPabz/gVgsFZoout1:Eh7csCyEbZooS
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 020ae46ff0e70d02bc6ac791c1271739_JaffaCakes118
Files
-
020ae46ff0e70d02bc6ac791c1271739_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 128KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 98KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE