415d7254c9a3abe9e827cd78dfdae6ca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

415d7254c9a3abe9e827cd78dfdae6ca_JaffaCakes118
Size

71KB
MD5

415d7254c9a3abe9e827cd78dfdae6ca
SHA1

e5f264fbcedec9985cfbb60d77d5ae98f6835347
SHA256

b3b1ecdbaf8f3991d5fd721911ab9347421f790b967cfbb78269491b0dcfc5cb
SHA512

2c44e097c3d93b184c66b2c5c098a95b566ff9c40b6918c574433fc509051d373cf25e4308d634ab9905e1afeebe4ef3be041de3795e063d2415490e355d9ece
SSDEEP

768:Q4I2WnaZPC/0mGJGLJx0LoIJBhzWB5T9Zztj7Czx1bcg2me:gb/0mGJdvBh25Tf9uMrN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
415d7254c9a3abe9e827cd78dfdae6ca_JaffaCakes118

Files

415d7254c9a3abe9e827cd78dfdae6ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

560ada3e895ae3ac1685db5571ca73b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord595
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord717
ProcCallEngine
ord644
ord570
ord685
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE