5ede2c61308c5366c2f8c3e826e46a4a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ede2c61308c5366c2f8c3e826e46a4a_JaffaCakes118
Size

108KB
MD5

5ede2c61308c5366c2f8c3e826e46a4a
SHA1

df932d122ef0e149c4c4924e58e7aba49d76a60d
SHA256

d7ce65a4ab89879a074280976362ab87cdf1d388443f73fd1bef9cff608d787e
SHA512

d7d87f827c16d1b08ca668cf6d4026c5f5724e31d73a221b05ebc71b82a578678d25e6f6cd877a07a20773ed91fba4105b19b2a02364fc26b3f06c6cece74737
SSDEEP

1536:jgNwYnxj56H2F8TMGxTLRXYQH/T8b9i5v1OlSz6SjK+SGlDxXSDaKv3JVjc9eK3:jaxj5E2FBSjK+bXzee

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ede2c61308c5366c2f8c3e826e46a4a_JaffaCakes118

Files

5ede2c61308c5366c2f8c3e826e46a4a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9bc04e29780f70d67c333157b6553ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord595
ord598
ord525
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ProcCallEngine
ord100
ord616
ord581

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ