3004cf7cfee32b83ff606e7b7ca11d0e_JaffaCakes118 | Triage

Sharing

General

Target

3004cf7cfee32b83ff606e7b7ca11d0e_JaffaCakes118
Size

1.3MB
MD5

3004cf7cfee32b83ff606e7b7ca11d0e
SHA1

a75472b54dc618e85c40fe4c5e0f28bb01d45a37
SHA256

53185bc14bd619f068ddc1204b6415a7198042b46f86c6a5653b6bf5cf03cf72
SHA512

95d23a3f8235494c4b48e2c18cbbc4970500d121fe9c2b60998013e6cb2f2747157c15923abab61da739632f1720a1f4c0b293a3c50809fe43b989e3c54effcd
SSDEEP

3072:9KHBafBWmEocn+GeHEgZvZL3VWF6KJL/R6wXQ1mYF/LhfKk/IwweoaKU7oMD9vZW:NRijOc6Ci

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3004cf7cfee32b83ff606e7b7ca11d0e_JaffaCakes118

Files

3004cf7cfee32b83ff606e7b7ca11d0e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c4c0cb13f4b56ef7694d5520a5690dbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ord717
ProcCallEngine
ord644
ord537
ord681
ord100
ord581

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ