1a125865b4cd8dd554fcadbbee1d5a01_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a125865b4cd8dd554fcadbbee1d5a01_JaffaCakes118
Size

72KB
MD5

1a125865b4cd8dd554fcadbbee1d5a01
SHA1

cd6c28a22d0fa1e04725e67d6e7664168feadd66
SHA256

176bbc2f7dd1e06b49279d6e3feff632933421fb4b49af35f04a816b62b671fa
SHA512

fcc28b23a5b86b2359f06f750ec871051e94d2e0c1de4697cf75fd629c7582a82a75f788c3343331d5e0795c8066850ad6b195a4c965f45f09c407c3eccccfd8
SSDEEP

768:zBIZcwiBYmU2BAOB2urx+m6ZcUxKXF9WjUxKXtVJjUSKXH/JjUxKwhZJjLxKX+2L:zBIViBdL6OBzLSNmW9idB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a125865b4cd8dd554fcadbbee1d5a01_JaffaCakes118

Files

1a125865b4cd8dd554fcadbbee1d5a01_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c1c887a596871a475c1cf5f4d71a8f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord595
ord598
ord520
ord631
ord632
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord607
ord608
ord717
ProcCallEngine
ord537
ord572
ord573
ord681
ord685
ord100
ord617
ord619
ord546
ord581

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ