340f4d0ca9ff5779b5ff65821d6e63c8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

340f4d0ca9ff5779b5ff65821d6e63c8_JaffaCakes118
Size

20KB
MD5

340f4d0ca9ff5779b5ff65821d6e63c8
SHA1

63b4be60f937ff02727248abf0ecafef62cafd6c
SHA256

0ea4bb92dac401e56b9acfa9efffd3ce5cf1acbc2afdea35bff10db4bc9d9070
SHA512

c9c16fd0516167f12ea4b5d9c3ff7263f29b24a42bc54d577389629842c7b23b0a6e5904efe4ec95112fd441a1cc7dee935bc08ee337d325bdcf13d04b57b52b
SSDEEP

192:ynuQnCnP5UKDrUzSnfLVoHiXBtpS8bruW1151M4diS05u:IBnCiCQCMidfu2fis

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
340f4d0ca9ff5779b5ff65821d6e63c8_JaffaCakes118

Files

340f4d0ca9ff5779b5ff65821d6e63c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f5d5ca1cb9cc8a671515dc34f3592e16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord593
ord598
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord570
ord685
ord100
ord616
ord581

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ