262c172968d648464a458ccd6a1e2cb7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

262c172968d648464a458ccd6a1e2cb7_JaffaCakes118
Size

172KB
MD5

262c172968d648464a458ccd6a1e2cb7
SHA1

b8a0c149e221932757fe4fc149a5b7d2746d1148
SHA256

232c81897ad46247d1612dd85f58b8d7fc49ed4581790efe42644b286920995c
SHA512

9f8ca6ae58e753c180b03206b7164d5daaf14f3f79e92afb8ccf8575f376c6e1bc009cbd945a781100bf4e7f36a7dc73e27918c0bee5cd38e5bc075672867dc4
SSDEEP

3072:CdrVHx7CUv+KaYgJ9LSs4e2h4FQwKHur1HovTlw1KOs:crVHx7CUv+HJ9ms92hZ5Hur1HovTlw1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
262c172968d648464a458ccd6a1e2cb7_JaffaCakes118

Files

262c172968d648464a458ccd6a1e2cb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7dea642127d9735a3a9dead67823cef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord644
ord100

Sections

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE