215666a34c34b2fd21478a6bdcbc7f9c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

215666a34c34b2fd21478a6bdcbc7f9c_JaffaCakes118
Size

144KB
MD5

215666a34c34b2fd21478a6bdcbc7f9c
SHA1

8115f63fded085ce4f3ae689d421fd51ff056f99
SHA256

4c45e939f25462f5cbc6e33154afa2f59fd3e7080a14101cca7f7d0858d95eae
SHA512

789e6b8ac35259df14e9710e31e046b606b073490a0bd296d7c6a44a0cec1bba4e8b0eb20158ea6671fbe22a23e95a81b4f70cfa506acd0852d54159558fcf14
SSDEEP

768:958zw76DJdy1opzyqlZUsM5GYbIeRECaNurnwKq2Bq7eLgFeemc8CyDGFtETUBHA:95MeKzyqlGsOQWgaebET4oKD0wc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
215666a34c34b2fd21478a6bdcbc7f9c_JaffaCakes118

Files

215666a34c34b2fd21478a6bdcbc7f9c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a0c4eabae2a17615b04b1593d15a1652

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord665
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord644
ord100

Sections

.text
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ