Behavioral task
behavioral1
Sample
3bd5fc5fc87a0d75a0a78486e72d32a8_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
3bd5fc5fc87a0d75a0a78486e72d32a8_JaffaCakes118
-
Size
207KB
-
MD5
3bd5fc5fc87a0d75a0a78486e72d32a8
-
SHA1
02b5db6fb7be819583987dec6849970b45ad8b46
-
SHA256
6483f5232b42da7c4889d11a638a22ca84cfcb9dfd9df3f0f0653f078181f28e
-
SHA512
8932b8ef8ba2f9ed953636676f4bb700cd89ea5513c50c772c1355ae696338bd1c3c949c82514e33d6b9f9853b52f3f7993f1b301708c9e6db070ae2ae4bb5cc
-
SSDEEP
3072:96Fv7/1tG/maYYbKHx0wsVjpjl+pzAF9WqXNV1np17Q3XgjS4lSbzjfQ+NQer:96Fvj1t2dYumEVZlMsnWInX7SBb/bNQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3bd5fc5fc87a0d75a0a78486e72d32a8_JaffaCakes118
Files
-
3bd5fc5fc87a0d75a0a78486e72d32a8_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
UPX0 Size: - Virtual size: 356KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 197KB - Virtual size: 200KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE