33e7b616991bcb08e66ec603be21aa2a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33e7b616991bcb08e66ec603be21aa2a_JaffaCakes118
Size

36KB
MD5

33e7b616991bcb08e66ec603be21aa2a
SHA1

5af7d3da37037834c685426b436614d213bf71cd
SHA256

8ee4dcba391a6eb73c37cdd38b6fdd0c474c5da41779a60adca361e7ad2615d5
SHA512

8f15ce222236c57468fdea08b478faa8faa9c53cc04ddc8ba4d9d72fdb13ab2233331a3763711ea7d1fdf1e05b96430ef99d7ae6c84aa013105a2df109d99ee0
SSDEEP

384:Qb7zsN1yjhb8cRWBX6mlu1rKf2k7sYeJAAME2r3BWHBq7JJms:Qb7zs6jhYcYck/cjME2rRWUK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33e7b616991bcb08e66ec603be21aa2a_JaffaCakes118

Files

33e7b616991bcb08e66ec603be21aa2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

16333b19f6bb75eed37029afe78e5a2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord620
ord621
ord516
ord518
ord666
ord593
ord594
ord595
ord632
ord526
EVENT_SINK_AddRef
ord528
ord561
DllFunctionCall
ord670
EVENT_SINK_Release
ord600
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord607
ord608
ord716
ProcCallEngine
ord535
ord537
ord644
ord645
ord570
ord648
ord681
ord685
ord578
ord100
ord610
ord612
ord616
ord617
ord619

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ