43e4e4666a8f52aaefcb2cfe2192c231_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43e4e4666a8f52aaefcb2cfe2192c231_JaffaCakes118
Size

28KB
MD5

43e4e4666a8f52aaefcb2cfe2192c231
SHA1

5a40591d43b25e596e6d2e76c83b98b992f26541
SHA256

3d1e3c0733599791b147d8285e64f660ec54f578df59a7b276d8dc1fe452066a
SHA512

24995653fa4b8288d363f4d540467bc01d6cbc91bb339cd4d517d5977a840d4a2e8eb55b5421e74cbb6fc7bb205827865cdaa5fd1fb1217c4f7fe4cd51a9f5a5
SSDEEP

384:Ka3I1EvZL4XQ8/eOungqER7DnlaDLbQ6:53G4ZL4XQ8/ingqwlaDo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43e4e4666a8f52aaefcb2cfe2192c231_JaffaCakes118

Files

43e4e4666a8f52aaefcb2cfe2192c231_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80d8cef188316d10e645ecc1725fd708

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord519
ord595
ord598
ord631
ord709
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord681
ord100
ord689
ord610
ord617

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ