211b456d401f6fa5ca59576d183f00aa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

211b456d401f6fa5ca59576d183f00aa_JaffaCakes118
Size

36KB
MD5

211b456d401f6fa5ca59576d183f00aa
SHA1

a8fe7bc879543a0907b5dec47a039a674f912249
SHA256

9ae3dbb77b11c5344b58ec0b8070056354ec84dd12933285df707f8cf5862736
SHA512

1d94abe3c9912bf523448da090c52004ac9e4678aa23d6e76c73e80bb43c5f2b53266e97d3685abc43ea15d29e86e141e058929e397bb0e08115126a7e4bc5dc
SSDEEP

768:y7Bj/OncHYDz30knr1+OYqIq7m5guxNQp4kaClwQx:gRBbOYqxq5geNQ+kaw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
211b456d401f6fa5ca59576d183f00aa_JaffaCakes118

Files

211b456d401f6fa5ca59576d183f00aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6df9135b595bcd49f8e4b71b0ecb5db3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord626
ord632
DllFunctionCall
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord644
ord100
ord616
ord617
ord581

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ