f25ebdf2595530723bcaa9ab6c0df8d2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f25ebdf2595530723bcaa9ab6c0df8d2_JaffaCakes118
Size

108KB
MD5

f25ebdf2595530723bcaa9ab6c0df8d2
SHA1

4f180e45fa4d80af78b7dc5a82baf5e00247fe35
SHA256

6dcd07c5b04c6da099eb14e4ac57efaedec6afa6ebe406f0a08b5fd7ce3c7194
SHA512

4138a59af54bb158ecc464544ce39612b77a74d696e1a1491aa80242fac00d66dd0d8c2e506688c85b09ce54891e5631ef3d6ff3de1590f28d74fe2beb34295a
SSDEEP

1536:bW14WcwxX95Zz2hsxvK9kGNNL/+Xb3jtc0uNZhbPYB4ZdBAHqpXXPqpEP1Ts7amc:6xpvHxS1/+L3jtJiZ1ZXAkXXeTQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f25ebdf2595530723bcaa9ab6c0df8d2_JaffaCakes118

Files

f25ebdf2595530723bcaa9ab6c0df8d2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dce9c44fb363765f948158eaf1eaa708

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord607
ord717
ProcCallEngine
ord537
ord644
ord573
ord578
ord100
ord619

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ