26899f5eba2488fefc38721d199598ff_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26899f5eba2488fefc38721d199598ff_JaffaCakes118
Size

16KB
MD5

26899f5eba2488fefc38721d199598ff
SHA1

faae751d4410aa2a894ecb2175987d58a916a5ed
SHA256

35fd4007b32b3b7b702b8a1d40aec986e052dab142fb6095656ef7a241400c57
SHA512

632c43cab1d58cc21ac2e8fd76beeea1109d5e2655d6c35a1e86fbcf42e2ad3babd58b0ab7b22cea6bee59fa9ed5c7a8e5e09ceff34a1f40a0b461e56cd05c62
SSDEEP

96:dmZlaALEHdbnKG5vt+uzEIFayJ7HPR89IYJgE92:ot4HVnB1laA5WeE9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26899f5eba2488fefc38721d199598ff_JaffaCakes118

Files

26899f5eba2488fefc38721d199598ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77cf15647958655182d69044229ea9af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord593
ord594
ord631
ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord712
ord713
ord608
ord716
ord717
ProcCallEngine
ord644
ord648
ord100

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ