3bf7498cf3f655a455dcdad03bdd7eaf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bf7498cf3f655a455dcdad03bdd7eaf_JaffaCakes118
Size

1016KB
MD5

3bf7498cf3f655a455dcdad03bdd7eaf
SHA1

bdafe63f2a5a102b8531de7cf19dd508a702a78e
SHA256

6c37dacbc92954b9a10e7e42610a7259226e1fb74d4deed040cf0d8feae13ccf
SHA512

8df14a48a7c0493286977d704125f959cc924624035cc13760a5cca1b3cb54e6e1b30c0a412a23e6134a2a205f4809000325120fe2d9f9f8a98123417ac5cddd
SSDEEP

3072:CagmvJfdXVCkTqr2G8AWEJka1oDCIqVzQi8za/aeDne/A5aonqAOLyu:CfCdlW6U4Wrz3/lDneo5ao7OLyu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bf7498cf3f655a455dcdad03bdd7eaf_JaffaCakes118

Files

3bf7498cf3f655a455dcdad03bdd7eaf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7cbafe4718200b53ff07e1bf9c561ff2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
ord697
MethCallEngine
ord626
ord519
ord705
ord631
ord525
EVENT_SINK_AddRef
ord527
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord713
ord607
ord531
ord536
ord645
ord648
ord571
ord576
ord685
ord578
ord100
ord616
ord618
ord542
ord543
ord546
ord580

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 932KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE