68e10db9bb604bacffba212fcd66c1e4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68e10db9bb604bacffba212fcd66c1e4_JaffaCakes118
Size

240KB
MD5

68e10db9bb604bacffba212fcd66c1e4
SHA1

12519fde966c982e364f6e5bfc68b511722a6a08
SHA256

0e7c09ad93d21befae8da5a34d51630d4ae93727e5f511e5f63e745f4223f44f
SHA512

b530cd81509e9a4f188caaaa879a6f426c962bb9459e8a665b042d90d6dd13f917534c1b989fc87f1e7bdb4b53532dfaa1ea0dc9e896cf0ed5fe8e24c68f677e
SSDEEP

1536:5wXR4qpKrdc0wEWIp6bboA5G0mAIBEzVn:Ip2c0wEWC6brM0mZEzh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68e10db9bb604bacffba212fcd66c1e4_JaffaCakes118

Files

68e10db9bb604bacffba212fcd66c1e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a916021b6c1baf8e6ddcae46dab89fe4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord626
ord666
ord595
ord632
ord526
DllFunctionCall
ord600
__vbaExceptHandler
ord711
ord608
ord716
ord717
ProcCallEngine
ord644
ord570
ord100

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ