44dad3670476186c43fa18813876c31d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44dad3670476186c43fa18813876c31d_JaffaCakes118
Size

4.2MB
MD5

44dad3670476186c43fa18813876c31d
SHA1

b36dfa8db1d0871b92ef1f5fd07dc7af82d76de7
SHA256

97cd5c27ece3d31949efeb77ef4cee0c9b57d6d3f52fd811860698c9b5e3af7c
SHA512

d78cbdc6ef69dfa4ee225487985e082b8707ae606432394b35cf05a0a83c873ec40caffecd8da6fb57158cc7b1d4a6946c4f8b514ba1270dd06cf311676370df
SSDEEP

98304:jkCesqPpFnfJ5Zw18kEz9RrwxkSh0gsS91ti8q:bnqhFnh5Z1kEzPwOy0gK8q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44dad3670476186c43fa18813876c31d_JaffaCakes118

Files

44dad3670476186c43fa18813876c31d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

InitAdorchq
CloseVhhwrrcti
Mxgjknqgc
GetXbwjlbqdr
Petvoyxw
IsIlmjklfddv
Kaomhbbpc
SetNbtojtylc
CloseLccjehs
Jvtkfkqk
CloseSaajnpmthp
CloseSoyiijivksg
Qsrcemvpxm
Bsmpvbnwrh
Uujnsofksbu
Bvwtmhbkxm
Sbmcynitd
Bgveaylh
CloseKbsnktt
GetDwsnnra

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1.5MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ