Behavioral task
behavioral1
Sample
d50fa5e455466529f262a46e8e63bf0c_JaffaCakes118.exe
Resource
win7-20241023-en
General
-
Target
d50fa5e455466529f262a46e8e63bf0c_JaffaCakes118
-
Size
488KB
-
MD5
d50fa5e455466529f262a46e8e63bf0c
-
SHA1
67504bf04196d84668e083509b10dea14dff425c
-
SHA256
98b49dda6a6fcdfa0bfd1557bff2fce72107aa383a84498ec474cba7b3b1b97d
-
SHA512
dbc6f3c0e459e2f1a07dc1b3c353af1ccc559a85cb7da5fd49296674bcb392561c093fb40622d2eedeedc1f80fcf7e55ade82efd536cf408e39cb594ff8c081d
-
SSDEEP
12288:oXLEMeIDb8lvvKb8LmPgNJo64LaWK4/RI93E9KWLHOIoS:MEMPDAvdLPNt4LVF/i93E9KiH
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d50fa5e455466529f262a46e8e63bf0c_JaffaCakes118
Files
-
d50fa5e455466529f262a46e8e63bf0c_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 4.3MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 484KB - Virtual size: 488KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE