4e12d5b4a2492e5cea2cb2eed2e02bd8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e12d5b4a2492e5cea2cb2eed2e02bd8_JaffaCakes118
Size

24KB
MD5

4e12d5b4a2492e5cea2cb2eed2e02bd8
SHA1

a0df938eb178d2b417729fafcf70552bea292ce2
SHA256

a42dc5ea9a7f173b9825a6208fcf04bedbc1ddc877f8d86071b0a993b8241168
SHA512

5aea990b32251720fccda754a3ad8c36ec04bfa3544abfe59af2dd5748c1d1c706833024d8bb68d17b8e59367ea3eb2a032c738a46a60a1230e583fb56f37588
SSDEEP

192:EOrruecH9ZaCkvEwhypMkOrruecH9ZaCkvEwhypMR:TrruesuBvEwhypMzrruesuBvEwhypMR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4e12d5b4a2492e5cea2cb2eed2e02bd8_JaffaCakes118

Files

4e12d5b4a2492e5cea2cb2eed2e02bd8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a0507c286f8655ef4bf68680ce4615a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord518
ord598
ord632
ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord608
ProcCallEngine
ord570
ord100
ord616
ord581

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ