07fbd87b7554993b2f6968ff274e11eb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07fbd87b7554993b2f6968ff274e11eb_JaffaCakes118
Size

44KB
MD5

07fbd87b7554993b2f6968ff274e11eb
SHA1

2e0c333ad935a7e301dc827e4310ac3d0736e9c1
SHA256

3917347b990396dae5ad4f6637abaa12204435e05305952066d32cd38b2766c4
SHA512

e74be22b9500751fc9aa540b7de5ac30c635f562a874b88944b6a610ebcde59456a70345291d443bbd635d2d63a6af661ca19664967dcab570a95335cc7af597
SSDEEP

384:b4ImLYqPc1x3jc9R64FSgljKAuMUMY2Y2j2HoIu/JmjTH9Po912dKYnKV4ImLYq:Pwk1xHkSNRV+1IuhmVAr2dFnKRw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07fbd87b7554993b2f6968ff274e11eb_JaffaCakes118

Files

07fbd87b7554993b2f6968ff274e11eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

367db0b84fe2a171d15aace964ba970b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord660
ord593
ord594
ord595
ord520
ord632
ord526
EVENT_SINK_AddRef
ord529
ord561
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord716
ProcCallEngine
ord645
ord648
ord571
ord681
ord100
ord617
ord581

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ