1839687623f377925bd1a40a2c295547_JaffaCakes118 | Triage

Sharing

General

Target

1839687623f377925bd1a40a2c295547_JaffaCakes118
Size

176KB
MD5

1839687623f377925bd1a40a2c295547
SHA1

9a9bc02fed621b335145a7881d879e8a6c69b13f
SHA256

0df233543aee096290d83e25e7079f3003b9b566b570523b3b69ddaeef342bb5
SHA512

0e7d48356788eb8fd8a771692914610c5e734ad51a5f92d267a4d8e65cbd87337dcd561b634f6ec4f0118fc39008e5c2c947667cec876f3f2b7cd91546e2089b
SSDEEP

1536:B7LGX3sF6In25r0fkFYqZocsDvyHQpNiE+qTXZ9CW+UzWRnUSfXT6WDTOoOfPUox:BXGX3sLkMpfgRUkXT6W3WnRxkGkm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1839687623f377925bd1a40a2c295547_JaffaCakes118

Files

1839687623f377925bd1a40a2c295547_JaffaCakes118
.exe windows:4 windows x86 arch:x86

81ff31b763472716ef7b86c3eaa5f5de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord608
ord717
ProcCallEngine
ord537
ord644
ord573
ord681
ord100
ord619
ord581

Sections

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE