46aea8d645fec3f77875b15dc63b4d02_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46aea8d645fec3f77875b15dc63b4d02_JaffaCakes118
Size

44KB
MD5

46aea8d645fec3f77875b15dc63b4d02
SHA1

b4cc71cd8e094aea72367949b549bfbd0f5ec9e1
SHA256

1bf02fb62aa69936b2db0de13b686654685306eb6185649696faa3e03c7fd2fd
SHA512

4696ff3cb2184bb80f9d37e3cc8ed14a09bb46fb495dc90f510dc00c574472b68654286d5aab5a11784e4c3e4af1c766ea0996b6b4cc1ed440a3a0bd3f237ce5
SSDEEP

384:Dt4xwxT/a1T/cnebmurPIAeAKcMlmn22P51+L6bGObe4xwxT/a:D2xMTmLrPIAeAKFm1i61ZxMT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46aea8d645fec3f77875b15dc63b4d02_JaffaCakes118

Files

46aea8d645fec3f77875b15dc63b4d02_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d27653c79f73654f31df96fa550ae0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord598
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ProcCallEngine
ord537
ord681
ord576
ord100
ord616
ord617
ord619
ord580

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ