62ae1bc16337a705e7c906aa842a93b4_JaffaCakes118 | Triage

Sharing

General

Target

62ae1bc16337a705e7c906aa842a93b4_JaffaCakes118
Size

85KB
MD5

62ae1bc16337a705e7c906aa842a93b4
SHA1

8702d150695c669d8822f662faccd1e20b18fced
SHA256

a4cae945ad3e7d65159aee486ebad234ae9595aa8af0c990111c4c717b459cff
SHA512

87360c93530e7fd107d6af3ef69383693fa8af6b57ba3664d41e927613f590d425758a768b982b99e137249b6119f329335e7411cb335286e9dad94f75d7c34a
SSDEEP

1536:jvbLN8xDJmZc8vRPiexok3HNkT1Ieja/2xvIY+d1WmCcyCi:TyJSXKQoKdejdxglxCcyCi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62ae1bc16337a705e7c906aa842a93b4_JaffaCakes118

Files

62ae1bc16337a705e7c906aa842a93b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

455e3c87c5118c04ced3f6d538c9c2e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord631
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord717
ProcCallEngine
ord644
ord537
ord573
ord578
ord100
ord619
ord581

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ