Behavioral task
behavioral1
Sample
1064b82bc62f46328fcf110d4a92dcf2_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
1064b82bc62f46328fcf110d4a92dcf2_JaffaCakes118
-
Size
1023KB
-
MD5
1064b82bc62f46328fcf110d4a92dcf2
-
SHA1
d3380c10da31bc23814a1ea742f302ce7cfeb2df
-
SHA256
e73f975aff5c0fe33fc3b7314f639daa7f7e7c77f15c1650b85632a70478c185
-
SHA512
b2c01e8002cacc0dbc2429e99eb21b353b71307447f3e88e077caf5b3dda17df2950ac80cb58641e42c8aa2f2e1cb43ea37b021bdf14c7d89cec4b839376964b
-
SSDEEP
24576:16WVT6WMaQwV6KSiWQm5ZZBLvcfpHUOLHoQ6HU:16W4WvE/v5lLEfpHUOboQcU
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1064b82bc62f46328fcf110d4a92dcf2_JaffaCakes118
Files
-
1064b82bc62f46328fcf110d4a92dcf2_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 288KB - Virtual size: 288KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 652KB - Virtual size: 656KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 36KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE