471692ffda8f83f488146533d1b215fd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

471692ffda8f83f488146533d1b215fd_JaffaCakes118
Size

100KB
MD5

471692ffda8f83f488146533d1b215fd
SHA1

f40cb1d82b4f2c6ff04d2f171cb90225151af8ff
SHA256

0c18078bc89a3f9ae54af527e855285dd77a4d3f059f15495767edad6020ab76
SHA512

6bc73ca02bd39e479cec8dc408290022267410e79c1486d28a3205bc53f22c18bd3ae1d177349bbdf31e14970fbf83398c69356ffb98ceeddf5063a1c69f544e
SSDEEP

1536:45AakFmuH8d3pDfT9tdXVC8/o5ePbL79usd:zagmvJfdXVCk1Xsk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
471692ffda8f83f488146533d1b215fd_JaffaCakes118

Files

471692ffda8f83f488146533d1b215fd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7cbafe4718200b53ff07e1bf9c561ff2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
ord697
MethCallEngine
ord626
ord519
ord705
ord631
ord525
EVENT_SINK_AddRef
ord527
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord713
ord607
ord531
ord536
ord645
ord648
ord571
ord576
ord685
ord578
ord100
ord616
ord618
ord542
ord543
ord546
ord580

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE