3abb7f551a0c831cf529ee7e9c73595b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3abb7f551a0c831cf529ee7e9c73595b_JaffaCakes118
Size

152KB
MD5

3abb7f551a0c831cf529ee7e9c73595b
SHA1

bc022bccd363929f328353c5a505218c205fc10a
SHA256

d47d166ca4915a519617d53c6e676fb190d8c3f19411c406ac650b001384b1bf
SHA512

2de231e830d78d688572bb224f8c0755cdaae847748054be34f5d4814a47ffc1eccd5838b936d6688b9d065cb83e572c37c29bd479452ba81ac55c6cd38a54c7
SSDEEP

1536:oLYbNES0Fhi2gUTFXJArs3PFxSJwG6Ze28vK91VRJf:oLYb70zi2zhXJJfFqN6Z/8U1LJf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3abb7f551a0c831cf529ee7e9c73595b_JaffaCakes118

Files

3abb7f551a0c831cf529ee7e9c73595b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c8d60668e79a75bc1d5e3b7394b1392

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord665
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ProcCallEngine
ord644
ord100

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ