3cbbb685cbc3f79d0cb2d70a2ae0c2a0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cbbb685cbc3f79d0cb2d70a2ae0c2a0_JaffaCakes118
Size

28KB
MD5

3cbbb685cbc3f79d0cb2d70a2ae0c2a0
SHA1

c007dbdf3462f2d3c0dbc8df13f2c88b7649e564
SHA256

3b1c824c3d5e44d3c19a16f2f15a8bc62dde6b270eb7835912016340102bd770
SHA512

b3600a52396f68e38a92eea127e729d79e0e435af97093908710bec02c20b5e12a96b75fe8128677fe7bf3d9b3559962d3b4b286c971797e2c3e3e2c15c6fbb3
SSDEEP

768:O34qL724QjEFyQEjFTBC885JxdBa6+q6z0oCsjmHF99CDErpp1mNs8I:ZU7FyQEjFTBC885JxdBa6+q6z0oCsjmZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cbbb685cbc3f79d0cb2d70a2ae0c2a0_JaffaCakes118

Files

3cbbb685cbc3f79d0cb2d70a2ae0c2a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7071ee736a7777be597aa317ccc54977

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord595
ord598
ord526
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ord716
ord717
ProcCallEngine
ord537
ord644
ord100
ord616
ord617
ord581

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ