b44425e57a52008690e21f3710c5379e_JaffaCakes118 | Triage

Sharing

General

Target

b44425e57a52008690e21f3710c5379e_JaffaCakes118
Size

508KB
MD5

b44425e57a52008690e21f3710c5379e
SHA1

d26700ac6ff624f9a0921e502c79637381208ed1
SHA256

7ef44f865ec8b811d9c32ed5820cc9f45c2485481e84bfc5aa27c7d3389c9b4f
SHA512

852d6f9c1f11529330a9df3ed1df7a32820289f51d7de25a9cd534dd11e87500307731cb8f213f885a3ed310509da5bba077a53be9d73d29e1438529e91590cb
SSDEEP

6144:Aw9PJDdpS0raBThVNuTCGGLfXLZQL2RsDwUeYFKpziEj35Nzk:V9PJ3aBT+dTebzxj35y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b44425e57a52008690e21f3710c5379e_JaffaCakes118

Files

b44425e57a52008690e21f3710c5379e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2baf2cf5457a6cbc889a1294e9abb0e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 500KB - Virtual size: 496KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ