1ade90dfe53579c75c4e8a7bdc1b4777_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ade90dfe53579c75c4e8a7bdc1b4777_JaffaCakes118
Size

52KB
MD5

1ade90dfe53579c75c4e8a7bdc1b4777
SHA1

fd63a30f9bf50d7e2af44b1d4c7a4d3cf4d00dbc
SHA256

7040b4dbda4b532984a1ed9de87eb0a34ddbcf5732b0c9b379c1bfee62aa9530
SHA512

a27424a5b0c6e95150b367e02ce0aa9ceac6cd00d0542fdf36486ea9cc369069049cbb56337aa4471de62e9d197e5be755a0e6f3205fd6dc52b73f7cb0c18113
SSDEEP

768:eGq+Edai9s+Gty6cDQvJ9S44BaO0+1oVpMBjS++l8QE:tEAYGt3T9O0+1oV2BjS+Nb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ade90dfe53579c75c4e8a7bdc1b4777_JaffaCakes118

Files

1ade90dfe53579c75c4e8a7bdc1b4777_JaffaCakes118
.exe windows:4 windows x86 arch:x86

24fa92ec76fb1dff16558b56b0da6dc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord516
ord517
ord518
ord519
ord666
ord593
ord594
ord595
ord598
ord599
ord520
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord608
ProcCallEngine
ord535
ord537
ord685
ord100
ord689
ord616
ord617

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ