34fad272d93869996f0827b4f45e3fdb_JaffaCakes118 | Triage

Sharing

General

Target

34fad272d93869996f0827b4f45e3fdb_JaffaCakes118
Size

171KB
MD5

34fad272d93869996f0827b4f45e3fdb
SHA1

c923f35909ca0ac9a374c9036c0590a0477d7b0b
SHA256

538fa0fa328bf474da6f8dc057b3d17049a50a32bf75703fc69f3e19c58d2e45
SHA512

f91d8c3b0d8deda0d86657856b5a18ead88edc01256d37b7aaf75d5b4e85f273690e3ef5f0501ae4d773d77e35f6b150b4b0efe81be05030e05d3a4e8ba67ece
SSDEEP

3072:s6G3gsujuKgaxBLg1RjM5TBZLOGcImEUbQeLi9f0tJjNQWiS0fw/rSIS:W3utgaxLlzh1mLMemaZSWiS0fwTSD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34fad272d93869996f0827b4f45e3fdb_JaffaCakes118

Files

34fad272d93869996f0827b4f45e3fdb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

227355e08d9eaa8e2f071033223657ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord632
ord525
ord526
EVENT_SINK_AddRef
ord528
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord570
ord681
ord100
ord616

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ