0e25d03cb8c8adfea595862ffbf2bd16_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e25d03cb8c8adfea595862ffbf2bd16_JaffaCakes118
Size

16KB
MD5

0e25d03cb8c8adfea595862ffbf2bd16
SHA1

fed0fed6054be278515fd3056466ec6fdc791447
SHA256

c66780bf06fe6b8c706f93d7a805027631632b4c3f4cdd835f5672316873b0a1
SHA512

b2e552f27a2b8e197b5e7ecfaa8edd97c0835fa6ccbc8f266b6cf0647507bdeab8f4425f4a5b6a57541ce124ef6c39f88ded6bc8449b9fe2502439a473167617
SSDEEP

192:QjkZUJaE1UyWoBycBNaijjjjmwAyrd0yE8EH:MRWoB5BNnjjjjmwrrGnH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e25d03cb8c8adfea595862ffbf2bd16_JaffaCakes118

Files

0e25d03cb8c8adfea595862ffbf2bd16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

88acd6654c8892b91928af5fba7eff58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord632
ord526
DllFunctionCall
ord600
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord570
ord100

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ