0974c383df07b25dc165b1d200c772cf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0974c383df07b25dc165b1d200c772cf_JaffaCakes118
Size

44KB
MD5

0974c383df07b25dc165b1d200c772cf
SHA1

1265c2a80c8ba541a7de41531b83bcbeee6ffd53
SHA256

9c76da0a972685adcddf85f032961ac9b3150a07e68f7308be2658729fefefe4
SHA512

4317d4a6eeecc42f9a493a6c09d2b707b3e9f1eb9c6f3b8891d9c395bb5138b25f34d1f68267fa83d644fc3c2a612373c6555a1d40b81d50af4982d937341451
SSDEEP

768:JMJ5TY+6VNRrWM8h/+J0jr6SntjEWptRtVBXZFmdVkNmQNnsSsTITHM36PQOP+yQ:qHY+6VNRGhWJg3NDpZQ0+duVG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0974c383df07b25dc165b1d200c772cf_JaffaCakes118

Files

0974c383df07b25dc165b1d200c772cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5abb44c656012a2c2c6a6c563aee7a72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord582
ord584
ord516
ord660
ord593
ord520
ord632
DllFunctionCall
ord601
__vbaExceptHandler
ord606
ord608
ord716
ProcCallEngine
ord535
ord644
ord572
ord573
ord575
ord100
ord617
ord546
ord581

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ