2726b162e436cab3d979d1863fff3b14_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2726b162e436cab3d979d1863fff3b14_JaffaCakes118
Size

496KB
MD5

2726b162e436cab3d979d1863fff3b14
SHA1

97ac44af0bbc2a55974961874b573c7677462b6a
SHA256

5c03fcb3e93e193794335732c09ea5592d06c492c0632fa3471c3dc313c9df32
SHA512

41ebb874b7abddd67f8e8a1eeeb4624fd353d7f15cb611b00086a1e2f625d849cc6b4ac158f5705637a411937ad5d3ca70cefb338b4699dae3d56ba82601900c
SSDEEP

3072:CDb7dxjP62ZcNsyT6veHbVANZlu7tyCP3C5S/f6ULtSHLqfZn1CjpRdSiblxjTGQ:+7/ji8ms47XqU2P8+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2726b162e436cab3d979d1863fff3b14_JaffaCakes118

Files

2726b162e436cab3d979d1863fff3b14_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6c30ce1801dc1c1bfcfa3795668be4b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord694
MethCallEngine
ord517
ord519
ord666
ord593
ord595
ord522
ord523
ord631
EVENT_SINK_AddRef
ord527
ord673
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord714
ord645
ord647
ord574
ord685
ord100

Sections

.text
Size: 488KB - Virtual size: 487KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ