3e2a152fd6e015a14e9dade48aafc165_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e2a152fd6e015a14e9dade48aafc165_JaffaCakes118
Size

24KB
MD5

3e2a152fd6e015a14e9dade48aafc165
SHA1

01f59a1b17333b5a7f74b851e39708e54f2bd67b
SHA256

f81568a685eb1b83cbed1624671010c6e8b3cc20560ac985657ade299c8e4fd7
SHA512

e38429a63dc79b7b7aa3230a7f85c979a10634a6186a9808b9829cbc448a18318405ff12f82729381368214c437c6bbc2d0bc3974d442a3f983b7e4ff7f6d3f7
SSDEEP

192:IZx3SFOvo4QjYqd6Q7gDM5zoE7YrJ/ozfK3I2Rx1HsO3epZJMbPgHQRWbE:c3RIYk6Q7gD4zI2fK31QTQRWY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e2a152fd6e015a14e9dade48aafc165_JaffaCakes118

Files

3e2a152fd6e015a14e9dade48aafc165_JaffaCakes118
.exe windows:4 windows x86 arch:x86

197a82f992a1a8a9c6ead8a1ec0acd64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord592
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord645
ord648
ord571
ord100
ord616

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ