69000e3a3b0186343b5fd90ec55cb52e_JaffaCakes118 | Triage

Sharing

General

Target

69000e3a3b0186343b5fd90ec55cb52e_JaffaCakes118
Size

392KB
MD5

69000e3a3b0186343b5fd90ec55cb52e
SHA1

06510651e575cbef83171b1870f1ff40abc4e13c
SHA256

0580a57615352c829555a3be384dc8df75c8795ab552f77a6df7b00df4ffaea0
SHA512

3e0fb0f2440a829d57871c5925ef7ddafa67a9affa38ca286191f18d042d0fdc7ac6d0ef53a7df1fa90d9cb921041136b4820f10c913e17cc5114146b6046ab4
SSDEEP

6144:IFKpEEb4NrxOEG+Ypr37vH0hlYGG+Ypr37vH0hl0EEb4NrxOmZi:4Zg0rxOog0rxOY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69000e3a3b0186343b5fd90ec55cb52e_JaffaCakes118

Files

69000e3a3b0186343b5fd90ec55cb52e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b59f2e868280bdbf5cac3d398e8bbf29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord591
ord632
ord526
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord608
ord717
ProcCallEngine
ord570
ord573
ord685
ord100
ord616
ord619
ord650

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ