Behavioral task
behavioral1
Sample
11043e09cb6bd583e2a06d264b72a1de_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
11043e09cb6bd583e2a06d264b72a1de_JaffaCakes118
-
Size
90KB
-
MD5
11043e09cb6bd583e2a06d264b72a1de
-
SHA1
dd2de5c71de619362678c0a13a1d094f7bbeb44f
-
SHA256
e1186506bc31510497070c1528c1e0ad9a38337ace27d92cf00ed183119692c6
-
SHA512
3c06eaf5c223c0c0fa05d3af6dec3580eb2d8443d2b0ac512581155dc69369b9feec9e75a8df66b8ad868f0d6387ab662255478acb37c52d02ebef8d885f244e
-
SSDEEP
768:CTCJiqdS7QL6lZJPjaDgoidqZOfQfOZxWEC9CE6TRXYo7YX6d8G2uI5knBDLCJ:CWwqY7QwnbEgvdqZuQsgONzMQpC
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 11043e09cb6bd583e2a06d264b72a1de_JaffaCakes118
Files
-
11043e09cb6bd583e2a06d264b72a1de_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: 64KB - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE