1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118
Size

88KB
MD5

1ac33b3ca54c83a67e4a3f66e6674663
SHA1

8353221e99c0ea41997b8e554edf15648c6ad2f9
SHA256

c01cd7d4cc2bd5df6c136df76c1658c1d086ce3162e85059f787b0be4fb89243
SHA512

d24402313b40ddb70885c0af942a06fa6ff304c2715a33a4d07d9217c5df60bcf0c7edd276f1054a053f576127f5295dbda084a3ccd58f7247e028ea2e85f37f
SSDEEP

768:DaHBPlpUNQdS8T1hSoZlmHi6J6TPJOnwDSngJz6TslzHTs3Oj+ujC5PHSdzD+/Oy:DahvUNgPTXujfwDPB5Q0+6Ij

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118

Files

1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118
.exe windows:4 windows x86 arch:x86

31d1de84170dcb7ca9768e54b10879ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord558
ord595
ord303
ord598
ord309
ord631
ord525
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord713
ord608
ord717
ProcCallEngine
ord537
ord644
ord570
ord681
ord100
ord581

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ