213c78d8110952e13f6abfdfcc3c5fcd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

213c78d8110952e13f6abfdfcc3c5fcd_JaffaCakes118
Size

16KB
MD5

213c78d8110952e13f6abfdfcc3c5fcd
SHA1

f8feafd841ba7411d23d2e6f10187f58373a76eb
SHA256

1e7e6d74f618f85c8cce3b189b208229c28deface87157f11e053b7baebff9e5
SHA512

6587a5f1bfa1823221ca40a67e83158bdfce283a007f8f29f354af7a4767aee3c8b0a89f374402dffebf0bf2e865de02b78a764aed59652d448ef42468057257
SSDEEP

96:3k+yt42SrQC+CqlWWR5B0oG3ifaALuMJ2:0+ytDAWr6oC3MJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
213c78d8110952e13f6abfdfcc3c5fcd_JaffaCakes118

Files

213c78d8110952e13f6abfdfcc3c5fcd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b3cb70803fdf6396556a81277c5c1a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord570
ord100

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ