30d4d9c2c726e3d79074f5a1c5cbe2ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30d4d9c2c726e3d79074f5a1c5cbe2ce_JaffaCakes118
Size

28KB
MD5

30d4d9c2c726e3d79074f5a1c5cbe2ce
SHA1

73529f310481d72022f0034fad46d1c4d010e15b
SHA256

a1ec74baffb3d1584e420cbff7783f27525680a79c73b215b7cac1bf2dd573b5
SHA512

2497807f7dd09973a07b488aa4c513271e55b2df173fed83d35dfef300f55828291b156137e869d9f71fcbea1e32e909dc8f5a4a4f64659d5f4bc137e13a25dd
SSDEEP

384:qe/+Ae/8e/tfF1a1Y6gLoMe/tfF1re/ke/+:rQV5nwxgLoN5nSd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30d4d9c2c726e3d79074f5a1c5cbe2ce_JaffaCakes118

Files

30d4d9c2c726e3d79074f5a1c5cbe2ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f44cc26c2ac5e7e202cc55a74d54fc53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord100
ord616
ord619

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ