4c7c9cb8f8ff27f985c2a614c1cfced3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c7c9cb8f8ff27f985c2a614c1cfced3_JaffaCakes118
Size

72KB
MD5

4c7c9cb8f8ff27f985c2a614c1cfced3
SHA1

76bf2f21d4220efd4db7e746ceae28541e4ac49c
SHA256

aa9b79db95e26d3bb10d4b367d171eb7e5ea2f54054f87e7e20a5b47fff2227b
SHA512

3ca9b71eb6b8e15a718054940acb35792345a3f23e83253265ee88525d7dafaacfd6ad57dc6d8ef5b424489b940e1080266adc573aa79a5e1caf4ca79623c7eb
SSDEEP

1536:UdruGKn9cuFEI1ZCM1PqG9pT632FszuZMrBwQg:UdPuFEI1ZCM1PqG9pT632FszuZMrBlg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c7c9cb8f8ff27f985c2a614c1cfced3_JaffaCakes118

Files

4c7c9cb8f8ff27f985c2a614c1cfced3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f1cbf2a8d03a375d461e040ada24f660

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord631
ord632
ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord570
ord681
ord100
ord581

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

��h�
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE