288f58a773b980ff56aa1fc857357185_JaffaCakes118 | Triage

Sharing

General

Target

288f58a773b980ff56aa1fc857357185_JaffaCakes118
Size

16KB
MD5

288f58a773b980ff56aa1fc857357185
SHA1

c04fe6c2f9bd57f14540e9502896481d8ff1a16b
SHA256

5e5897a33ae9f3c347574ec4b45c5373277e543de847b64e9fc6e8e8f6df5d72
SHA512

487dd9b69d1e36ebb8cf768ed7d08df68b4938146fe27c51a56acfc92f45888eba99d866756552ef699f2f00d09c2bb6f9f5b34d4688e1d1bc7e999dd1c86763
SSDEEP

96:AhPvduF9eEC1lQffyTbU1Y8FnHKOTcrTvoKxNUc06lxjxSH1Z0Xy+fjr2SQIv:oPvduTeE13mU1Y8FnFTLINZyngjr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
288f58a773b980ff56aa1fc857357185_JaffaCakes118

Files

288f58a773b980ff56aa1fc857357185_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3799f4446c21ab5d00ee54a562634ddd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord520
ord632
ord526
EVENT_SINK_AddRef
ord528
ord560
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord607
ProcCallEngine
ord685
ord100
ord617

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ