292f9f9632684e98ae622a85d9779074_JaffaCakes118 | Triage

Sharing

General

Target

292f9f9632684e98ae622a85d9779074_JaffaCakes118
Size

49KB
MD5

292f9f9632684e98ae622a85d9779074
SHA1

58e0761a1f7e0311287c41e0a5e0b1a134063035
SHA256

b75546534dadb48325c4b26c5076491a68f8154d39eb8af0eff1238bf542fb22
SHA512

0c7949be8be73159a071f6a83c038bdf3c6ca15043c3f1ae3405c847d941fc9ec12620dc9fc5678f52d46e718bfed5c0502bca465b158eed817fd32eda0ce692
SSDEEP

384:Sg6bXK6YC9r6XalUROO0cUuPOMiGOEvCDovXeznQVrXZxLmzkD9DlhVS2zppY146:vEa2fc1AE6DomkVNzDjjzppY14lOLH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
292f9f9632684e98ae622a85d9779074_JaffaCakes118

Files

292f9f9632684e98ae622a85d9779074_JaffaCakes118
.exe windows:4 windows x86 arch:x86

25d878aaad4f9f806b2b9a80dc23680f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord621
ord516
ord593
ord594
ord595
ord632
DllFunctionCall
__vbaExceptHandler
ord711
ord712
ord608
ProcCallEngine
ord535
ord645
ord570
ord100
ord617

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ