4a132c18beb9f93f6ff90a989b4a715f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a132c18beb9f93f6ff90a989b4a715f_JaffaCakes118
Size

620KB
MD5

4a132c18beb9f93f6ff90a989b4a715f
SHA1

b81d13051562cf4842f6fa3153c4d1cbd3df2716
SHA256

d20573c517bc03963bf968fcb867de032f558d159a4740c1c6d070bf541149fa
SHA512

c50853caed4c69320f47dfd1bc1c694385995e0fb6385f56020165d892ac8635d927ff4cc970243c8200cf65b4af48b86530610144238acc5680f5842309809f
SSDEEP

12288:/v1xEf9VCF1nonfOvOFReM4K3ye/8TfpCSTPEwCQLy4pSeeoW2:/vQf9V8nonfO22lKCekTfpVrEwCQz8e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a132c18beb9f93f6ff90a989b4a715f_JaffaCakes118

Files

4a132c18beb9f93f6ff90a989b4a715f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7dc3535804fcfead0c07dd0faa330066

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
ord697
MethCallEngine
ord557
ord558
ord598
ord705
EVENT_SINK_AddRef
ord560
ord674
ord568
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord531
ord641
ord537
ord100
ord616

Sections

.text
Size: 600KB - Virtual size: 599KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ