Behavioral task
behavioral1
Sample
276f2ee84a43a0334767709ba62f9288_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
276f2ee84a43a0334767709ba62f9288_JaffaCakes118
-
Size
452KB
-
MD5
276f2ee84a43a0334767709ba62f9288
-
SHA1
7cba382297a19483094a7d5090bd6c4aede92c65
-
SHA256
a40276535101e7ea3ffc3b0eec6b82f01ee8f18ddfdf2b562e8d2d28cb28c1f7
-
SHA512
d9219d7e2a1a15aa860fc96a8b102d3bdd3f3bbc54de529fcbb93ce07ed4e862c2d30eb8415f90c3e9e86035ed76fdaae74a93f2a80054e068eded3f83d81e9f
-
SSDEEP
12288:+4zXlwul7V8fwCo4dejzcZqoLbo/YsS/mBQEqZbrcwha:9ZR8acZq8MAIQEqNA7
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 276f2ee84a43a0334767709ba62f9288_JaffaCakes118
Files
-
276f2ee84a43a0334767709ba62f9288_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 72KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
UPX3 Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ