Behavioral task
behavioral1
Sample
28091903f1fb27399d239887f1feb7e8_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
28091903f1fb27399d239887f1feb7e8_JaffaCakes118
-
Size
115KB
-
MD5
28091903f1fb27399d239887f1feb7e8
-
SHA1
fdae77faf40474bf67d3ce26b03d9854d7e7b0bf
-
SHA256
7abe0fce060f783a17b53fea6d724971713c8aeeea5800683dc33b4a5c1e3338
-
SHA512
9cf29aa6d13461941aa1afd8d435742afeaa1ffe24a5bb7e474136e84ebcc523a067ca50398cdba2714f32cbf49d058db05c719d7fa5d087a6a2211a2948bdb0
-
SSDEEP
1536:GgJBBk1Sf0vAVSCD9PW3gR9JWyEcNG6o/q8nPCqNxokO3/fdSWpYrxR8lUk9gNl:GgJK9TChdfJGcNG6QtXoBd3pYD8lt92
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource 28091903f1fb27399d239887f1feb7e8_JaffaCakes118 unpack001/out.upx
Files
-
28091903f1fb27399d239887f1feb7e8_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 92KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 67KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 46KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
out.upx.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 84KB - Virtual size: 83KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 54KB - Virtual size: 53KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ