4d89b37b57bd3914e7494f1a90d0147f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d89b37b57bd3914e7494f1a90d0147f_JaffaCakes118
Size

32KB
MD5

4d89b37b57bd3914e7494f1a90d0147f
SHA1

94a165e2e4c5416f97d85c21eeb264fbe4aacc82
SHA256

5cae9e4e546b9b97c4d72bde2f0b44d35d727a2bb2e1ededd2e18f5b89f3f6c1
SHA512

9214130b3e285f66923b20bf2309aff3b8068fce03e3c2b57b28772e54d565dadf5fb25497e2abbf8cc01188b17209a73a3fdcd45de4ebfecbab98e2d49c870f
SSDEEP

384:4h2dYxpDVQKuBpK4HEXQtZNP42/2Rd5ev4OORoIGnX/SMJcCdypFb0T9nH:4kqxpVQK9PyRqRPev4OO6fnXKMOSWF6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d89b37b57bd3914e7494f1a90d0147f_JaffaCakes118

Files

4d89b37b57bd3914e7494f1a90d0147f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ba7a7a3b787a78bc0842ff0c2f84cca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
GetNamedPipeHandleStateA
SetConsoleTitleW
SleepEx
GetComputerNameExW

user32

GetGuiResources
CharLowerA
DrawIcon

shell32

SHHelpShortcuts_RunDLL
SHAppBarMessage
DragQueryFile

Exports

Exports

WriteWvryxoxgrfq
Cjvcchbbpt
Rkacwmer
Hgcopwjx

Sections

.code
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 18KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ