Behavioral task
behavioral1
Sample
3faa74bcc0934b52c628ed443f175ac5_JaffaCakes118.exe
Resource
win7-20241010-en
General
-
Target
3faa74bcc0934b52c628ed443f175ac5_JaffaCakes118
-
Size
2.9MB
-
MD5
3faa74bcc0934b52c628ed443f175ac5
-
SHA1
49dcdeac53313bf50ca5340dcb1b748135724b81
-
SHA256
467195a072aae0ef28f46803fe71b232fe75321b002cbdb125663237d5e76219
-
SHA512
87941936e87fe935a27c86ad869df943c41b5146fb514e39b9d0aa878e25c97a48bf44a251d58cc1937ce79f22409c4ffe7dcb5c8fc0dc810f448cefad44f6e1
-
SSDEEP
49152:mY9obpIfRvbwTGUZIRD+yziJ5STP4M338dB2IBlGuuDVUsdxxjeQZwxPYRKs:mYiVI5jwqeIbk5mgg3gnl/IVUs1jePs
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3faa74bcc0934b52c628ed443f175ac5_JaffaCakes118
Files
-
3faa74bcc0934b52c628ed443f175ac5_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 3.6MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 135KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE