45b6d3d22e3e5f4130ac8c4c9dde9c6c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45b6d3d22e3e5f4130ac8c4c9dde9c6c_JaffaCakes118
Size

156KB
MD5

45b6d3d22e3e5f4130ac8c4c9dde9c6c
SHA1

d0710b0687594a7ada698bc7a95f08f57893a895
SHA256

7c83a3ea210a776d2ba105d3de47083eca611e359133840bdea3c0ea0c0c6c3f
SHA512

86670bf0d1941bed07c17a412cf94fd16e1dfecf9900bdd52b91e4c38eb703b961bfe1f85b11f67520986035b221e55c0c01c5d9b8ea9a818e4e8bb245668758
SSDEEP

1536:N+AK+3MaKNE6jLjaVGi1/9Kh73YoO2syHixqmoYVGi1/9Kh73YoO2:rKq0XypbKbeQixqmoYpbKb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45b6d3d22e3e5f4130ac8c4c9dde9c6c_JaffaCakes118

Files

45b6d3d22e3e5f4130ac8c4c9dde9c6c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a59bb582d5fbaeae078cec117b62f17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord593
ord594
ord595
ord631
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord717
ord537
ord644
ord648
ord570
ord572
ord685
ord578
ord100
ord616
ord581

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ