66d022e5f4e4b469addfe5db0900210e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66d022e5f4e4b469addfe5db0900210e_JaffaCakes118
Size

312KB
MD5

66d022e5f4e4b469addfe5db0900210e
SHA1

fb1738753c74d6e67431cfaf36e1d31fac71e2a1
SHA256

5401e8624ef70810f1e73b4c5ecd695c9b20834b0552812ea06c47cc9f744828
SHA512

69fa499f9ff1d12b9860528668fe1271d3f493f9be6ba9a9baf6cc663d2dd0960788f75df680c0416d279021ce5fef3ba5a96ee9110c8484b5d8a2c0b59c6fcd
SSDEEP

3072:1f/s1nnHsOtOYstYgfdT55YQfpXnR63945AZc472PalHwTgvxBe0xFoJN9iVE/DL:Pn2t1Pn2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66d022e5f4e4b469addfe5db0900210e_JaffaCakes118

Files

66d022e5f4e4b469addfe5db0900210e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bfb9f8ffdf12e2ceb8b03f3d5d62c6ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord709
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord713
ord608
ord717
ProcCallEngine
ord644
ord681
ord685
ord100
ord616

Sections

.text
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ