87b4e05f7a0cadd93da1fa86922df91f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87b4e05f7a0cadd93da1fa86922df91f_JaffaCakes118
Size

28KB
MD5

87b4e05f7a0cadd93da1fa86922df91f
SHA1

72aac373d21ae9aa417845289f0270567df0aad3
SHA256

8a3a1139ce9d542904c3a2b232e5476d8ad8072387c75846004f009aabaaa9cd
SHA512

1931b9c17ec3974089f6356e1c259410aaf06630758f3243e60884de02f82410f12229077f78c664155f8dd81a5d864c97c02c035b76420171a45847de47d777
SSDEEP

384:dAgK9LjX+Iy6JygUEs/sczmGNWrNDuwhhh9hhxSH/WgDLnIw3TkqW:nWLjvLyrE2NGNThhh9hhU/WYAqW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87b4e05f7a0cadd93da1fa86922df91f_JaffaCakes118

Files

87b4e05f7a0cadd93da1fa86922df91f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b4abffe2dccc242bb8240339da8d2bec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetSystemWindowsDirectoryA
SetComputerNameA
GetComputerNameA
VirtualProtect
ExitProcess

user32

SetParent
FindWindowA

Exports

Exports

EndYmgbundwc

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nsdata2
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsec
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ