224b916d771bfed7ff137a0d84093f54_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

224b916d771bfed7ff137a0d84093f54_JaffaCakes118
Size

24KB
MD5

224b916d771bfed7ff137a0d84093f54
SHA1

b1778e5d60f24e8b948e39bb49aeffb3b5b80e45
SHA256

d4b82c5c4d2d93632a096964dd148149445a8cfcf8285f4ff254c73cd2d67a21
SHA512

388e92e616d5db9a11e4d8608438cd1e283b78c85a390ac1e0e1943b8cf6f0681ddb4ea3d03f002aa8edfeed4c16c809c9670e2eb6a746ec62e67883f844bbc2
SSDEEP

384:mxwNpF+ugq1zj2zUen7N/BIYjBIbk6ced+/n+WIs+KIJ+CLrS:mOPcz7NO+OddWesCJRrS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
224b916d771bfed7ff137a0d84093f54_JaffaCakes118

Files

224b916d771bfed7ff137a0d84093f54_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d04d7ad4d3c8db2d3077414a01d1f619

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord595
ord632
ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord608
ProcCallEngine
ord644
ord570
ord681
ord100

Sections

.TEXT
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE