Behavioral task
behavioral1
Sample
0a9dc59028829a5717651f6bd4fec0a0_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
0a9dc59028829a5717651f6bd4fec0a0_JaffaCakes118
-
Size
1.6MB
-
MD5
0a9dc59028829a5717651f6bd4fec0a0
-
SHA1
825ef143294b913b9af8a5a4d1faf29473383198
-
SHA256
a2adf31c99d64fda8b22971ea05bf8f1ed321c3bbb16e00c426b676633353a94
-
SHA512
bdcda0da441dca5bf173ba8df7d26d3721e38bde59c05f470e4644a80d6897ea3ab06c588d81eb9ef468cb892094c65db8de2c368526e852d4ab1dc2c72bb3c0
-
SSDEEP
49152:5iHgC7qMoE9ttmiomQ6gdZeisU1g9nk5RFk9Butj:56gCh39ttmiCuisegSDa7+
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0a9dc59028829a5717651f6bd4fec0a0_JaffaCakes118
Files
-
0a9dc59028829a5717651f6bd4fec0a0_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 420KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 235KB - Virtual size: 236KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE