4574784d4c5dde7920961dcd9965c422_JaffaCakes118 | Triage

Sharing

General

Target

4574784d4c5dde7920961dcd9965c422_JaffaCakes118
Size

32KB
MD5

4574784d4c5dde7920961dcd9965c422
SHA1

6265dd51650a427e5421bd67c596777a14ee1d25
SHA256

f41af3cf8429731231d34b868c46620d723d03a0f4b587356681ab507167c2ad
SHA512

c9fb5c3b0da3f05d899b910e1f4f662f7aa4245a60d6d1dcaa73ad203d0b5df3c90807930d10b089e5362db7ddc34041b2335dc00e56113f6b9fa60fe2d25d34
SSDEEP

192:O391Mo0mtcIlMfEdRHzKyIOXxW/NoHesWO5GotT5n5caOkmZ0i2TCqLRlvLWTmLX:+lTLRqLsD5T5caOkmZd2eorP++RLd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4574784d4c5dde7920961dcd9965c422_JaffaCakes118

Files

4574784d4c5dde7920961dcd9965c422_JaffaCakes118
.exe windows:4 windows x86 arch:x86

464211f49060298f4832b0f29d448df3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord593
ord598
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord713
ord607
ord608
ord717
ProcCallEngine
ord537
ord644
ord570
ord681
ord100
ord616
ord581

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ