04d98f36c2a1b79a40c97619c1c3ed31_JaffaCakes118 | Triage

Sharing

General

Target

04d98f36c2a1b79a40c97619c1c3ed31_JaffaCakes118
Size

12KB
MD5

04d98f36c2a1b79a40c97619c1c3ed31
SHA1

051c8a0d11c0bbec487372f3a012a70550fba92d
SHA256

b77640a2911d99d1173788b2fa1546781f33ade78c7b3ff1ab3b791f48ac036a
SHA512

7719dd48f6d87faf5c1353837bfd1c928438890d2ef853329ec0212a5cde2e47294d15e9946a0619e85e351f4b6fd3ace4230b699e12b95f028906f18cddddcf
SSDEEP

48:ygZGIUPm26ZUvS/3N9FdbL50WYsBPp6mWJueXl/oglwZE2K2:5l+6OydtLVtUkeXOTEF2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04d98f36c2a1b79a40c97619c1c3ed31_JaffaCakes118

Files

04d98f36c2a1b79a40c97619c1c3ed31_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bad91fed9dab58de0ae1f264dc5a5268

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
EVENT_SINK_AddRef
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ