2e3e07f59f825abe517d4cc803b17283_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e3e07f59f825abe517d4cc803b17283_JaffaCakes118
Size

161KB
MD5

2e3e07f59f825abe517d4cc803b17283
SHA1

2351e720cfeebe8323395593937f521763f7b6ae
SHA256

83a6a0d1f4030036a877a00ceec6ad5a7c848c1c4ec085ba2915d124f5d9463d
SHA512

bf518da0449504624ebdb951783642e49728ad47e0071b352e0665b39fd7ac6c0850422446393044bfd9d6dc3a6a705b775f967ed703ee1ac085f6513ce3d531
SSDEEP

1536:bXDhc8pLmY8rHKvQW6MDs408LO4UFSbNguA9/OgNub0D/+JSOwdPBxLI9q:bzhOrqv56408LO4Nbmu+0y/Ddp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e3e07f59f825abe517d4cc803b17283_JaffaCakes118

Files

2e3e07f59f825abe517d4cc803b17283_JaffaCakes118
.exe windows:4 windows x86 arch:x86

da3361ae6d6c0054dfa12dc13578c5fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord626
ord666
ord631
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord713
ord607
ord608
ord716
ord717
ProcCallEngine
ord537
ord644
ord648
ord570
ord573
ord578
ord685
ord100
ord616
ord618
ord581

Sections

.
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ