3bed147c1c3d77c960bb6c1a72c49a6a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bed147c1c3d77c960bb6c1a72c49a6a_JaffaCakes118
Size

232KB
MD5

3bed147c1c3d77c960bb6c1a72c49a6a
SHA1

058cbdfe1ee07d30f387b319b57bd340b62258ae
SHA256

fb9b83756e782e54258ca616e3e15c56eab6ddef80001ec7310b596904063d63
SHA512

31d0a9144b3e0cb31446a807ab727068df570f4e61ca644351b5d63589c5c957f9c1be08061c5d6b4fb0df770f6507911d1e1d5acb7a767f28885904fc43ad60
SSDEEP

3072:bRhliVkeJRh1tUh23738AIhPkYzHPkgojoaBQXBQO3FQrzu/LbSRg:Tm1OC8FLzcgojoLXDFQrz6LbSm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bed147c1c3d77c960bb6c1a72c49a6a_JaffaCakes118

Files

3bed147c1c3d77c960bb6c1a72c49a6a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a46162f779bbda4eb97634f53f85b17f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord660
ord598
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord537
ord644
ord685
ord100
ord546

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ