5d03ef1588d8599130c23a4cd78b9d37_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d03ef1588d8599130c23a4cd78b9d37_JaffaCakes118
Size

40KB
MD5

5d03ef1588d8599130c23a4cd78b9d37
SHA1

2bdedd8f503a8ee0c0ef5bb4e069b7f7b902c142
SHA256

10c7e8ce3cd0a369f7184c2711e959ae4177d22c71b07d286d6a2edbf087d1e8
SHA512

03316a0cb55f2e184f3d23c3f6143b29ffb81d6742a22692504d4c4114767e371eb3cbe725f6687c83e9b564ed7ef81faf659e97b3895475b2f0fd58c96b0819
SSDEEP

768:VA5BsOGs9vthghuXDYI0A+IX5G2KJaTIfRhevO:V0BsObS9RpYO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d03ef1588d8599130c23a4cd78b9d37_JaffaCakes118

Files

5d03ef1588d8599130c23a4cd78b9d37_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c2f55d46ed459e3955553145e520622

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord593
ord594
ord598
ord632
EVENT_SINK_AddRef
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord606
ProcCallEngine
ord535
ord571
ord685
ord100
ord616
ord617
ord581

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ