658a90f63ac2c6c0f4161b39db4edd46_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

658a90f63ac2c6c0f4161b39db4edd46_JaffaCakes118
Size

24KB
MD5

658a90f63ac2c6c0f4161b39db4edd46
SHA1

653f8fe3a37f992c0bbf1c5b4da650e50968c58b
SHA256

fa9b50a5da53213cdb35a57a1bfae39f5b2e33d655d4eb8944f63cfbc5916ee2
SHA512

fec782c00380f05d70ad08d26a25b12fb9784ce0a7e75156b6d3c0ff3e0660feaf08c6082df60e573153819d1a75b2ff53dd97a2ca701afe0c921d77b4a47456
SSDEEP

192:ublK+5BqUgDQdI2rPBWNx2FYd/xJITrneVXuEW6E7ZZe:ublRqVDSIysEOseW6mZZe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
658a90f63ac2c6c0f4161b39db4edd46_JaffaCakes118

Files

658a90f63ac2c6c0f4161b39db4edd46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3accf752917c7298a4eae1a3b0dbce65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord709
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord609
ord717
ProcCallEngine
ord537
ord644
ord100
ord689
ord617

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ