146f8242c3153e462b26355d6d3bdfcf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

146f8242c3153e462b26355d6d3bdfcf_JaffaCakes118
Size

92KB
MD5

146f8242c3153e462b26355d6d3bdfcf
SHA1

923af4777048866b8575fc80c9e61d5f62b25877
SHA256

4ab7116b0f6f5f31f464c4e872c2d61fc3651b26f9f316f597fa5eb9a8f93db2
SHA512

3e57e4624cdc00e03217dc3110d4de35d0a3cd6a7db9ced04561a7e6c0b936238f0c7fcd2de1591a7a3fa8a47add2cf8ae1057394d1812b33d09ea588079fd38
SSDEEP

768:yUUFvzvKojesbC2FGoOtSp2RD7iOFuDa2r3TC8FJacOA0pbpkjkpSKOpQuURh1vE:y12OjozK2hiOMDaKjCw90puf5qhksY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
146f8242c3153e462b26355d6d3bdfcf_JaffaCakes118

Files

146f8242c3153e462b26355d6d3bdfcf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e231e6a3728c40ddea38698fbfb8e656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord620
ord516
ord518
ord598
ord522
ord631
ord525
ord632
ord526
ord561
DllFunctionCall
ord563
ord670
ord600
__vbaExceptHandler
ord712
ord713
ord607
ord608
ord717
ProcCallEngine
ord644
ord537
ord645
ord648
ord570
ord681
ord578
ord100
ord616
ord617
ord619

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ