419bd85398339ee9983edb9501c35dab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

419bd85398339ee9983edb9501c35dab_JaffaCakes118
Size

620KB
MD5

419bd85398339ee9983edb9501c35dab
SHA1

bce81cf8f1498e608e2b5f15ca8d56bcf280b01a
SHA256

a8a2b99b78beb254a15b66816a7fde2ef775afa243f96aa49ec3122e1d2caac5
SHA512

e415a55179a07d16e30864d19e4efde33c1e44c5d6d17186ae36c8455f278b5324c8dae2fc986a7dfb0dd64df2550a5ffca9ab8eb886bd1b855621367a4835de
SSDEEP

12288:p++dHg4w6YJFWYxE0fiIZObtQ/i73MfpKHaYy2jDLQQUk8ruec2i93N:cz4vYGYG0fiIZqGScfpKHaYyqLQq8TcN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
419bd85398339ee9983edb9501c35dab_JaffaCakes118

Files

419bd85398339ee9983edb9501c35dab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7e4a69869c2fcf27485c185556cd0f70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord667
ord631
ord632
ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord712
ord713
ProcCallEngine
ord537
ord644
ord570
ord573
ord100
ord619

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 600KB - Virtual size: 599KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ