219ba6fbced6be1d2956ce024aa7f348_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

219ba6fbced6be1d2956ce024aa7f348_JaffaCakes118
Size

24KB
MD5

219ba6fbced6be1d2956ce024aa7f348
SHA1

059ae778c7f4a721de965ed9171a1c6dc9055bda
SHA256

39f441f1f67ea7b30c4c8f52ec17ff92cc523f81289e8eeec501a1bd1a95f8bb
SHA512

3ce7dd4d4d0de287b6ae25d08133f70e2d5bfb62d29994937c6e1deb9aa37f732500dd7cac4ea01196bb4fd18f0403cac308bdaefbd4756ae9d45d5a50578015
SSDEEP

384:pBgDcGm8B9ZCV6xVnSr3iV1550+3jkQLNVxJXH3yU:IDGI4VU8Yv2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
219ba6fbced6be1d2956ce024aa7f348_JaffaCakes118

Files

219ba6fbced6be1d2956ce024aa7f348_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f95c4994e6891eabdab6bfa50368f207

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord709
ord631
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord609
ord717
ProcCallEngine
ord537
ord644
ord100
ord689
ord617

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ