240b9efdd829ea3a61c53f0cf62ba724_JaffaCakes118 | Triage

Sharing

General

Target

240b9efdd829ea3a61c53f0cf62ba724_JaffaCakes118
Size

24KB
MD5

240b9efdd829ea3a61c53f0cf62ba724
SHA1

cb0f0059da561b3c28f259be76ca3f860876d52a
SHA256

131b328c6978463deadb2fd9b377a96e131332a32794c9580a52fb31276b1a44
SHA512

a9a8869bf536bc7b4a2ca6a2e8d0d2561e36ea5ebf927895b2c5a91d84cb2145d7894ac7119fdf5ee6c79a7f399f527058a867feeb4058778d5b222949990eb5
SSDEEP

384:fTYwY+LQEU4ZZE4zXXaVQArMhBDVofo1Z:Z+EU4ZZB7XagPJyy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
240b9efdd829ea3a61c53f0cf62ba724_JaffaCakes118

Files

240b9efdd829ea3a61c53f0cf62ba724_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8b942ef88ee1cac4edd49bc30e2079cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord593
ord594
ord598
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ProcCallEngine
ord645
ord571
ord685
ord100
ord617
ord650
ord546

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ