31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118
Size

16KB
MD5

31a4b10ed9c6a5e9d377c5ca3beed0da
SHA1

48bc4e80f26facbf2c68c3d35f371ecdff69c32a
SHA256

2f0e742bf563f50074c679ab5aa29451c06f4fa75b87513057aea699b8fc93e4
SHA512

4bd3d0b56dbaeafa17c8249b5cbbd7f198a4492b50a9f38e891c1e839e5b6b418ed751eda353bb72475c795ff417f16155592b84efb3e177fdbd3e20ee3f49c4
SSDEEP

192:NCynrtDINynT+vOf65RzdBe+5orqoJ6/sRyEtVdl2nhS3onAXsJn03:NCQJfC5Bj56qS6AyEHH2hS4wkk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118

Files

31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8fcc0a3a549730dbc314de01001f3c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord631
ord526
EVENT_SINK_AddRef
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord537
ord570
ord100
ord616
ord581

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ