6adafe0a65c77c4656a271fa9261f0d9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6adafe0a65c77c4656a271fa9261f0d9_JaffaCakes118
Size

72KB
MD5

6adafe0a65c77c4656a271fa9261f0d9
SHA1

f63a5144abe9d3fd0957677a16db73996c0cccdf
SHA256

32ecc2ebe3eeeead35c36076a3de839df15cc6eb7eb8af64c1165fcbf85ba763
SHA512

a7bb3ab158b2b987bed7eca36cb743241aed1e9ed352d6e61e08a0f5cb5efd4e70e59617ab108a0dde65e6914a33360fdf69aaed8d50fada33f13e08e1608549
SSDEEP

768:8FyM8Cz2vZ1tK++CWzZJ3z1tVrbFQfVr0J3z1lz5NK++r1Kv:M1fz2hrK++ZJjlbFQh0JjjK++ro

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6adafe0a65c77c4656a271fa9261f0d9_JaffaCakes118

Files

6adafe0a65c77c4656a271fa9261f0d9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9706681d44ce11049914465373b4710

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord570
ord100
ord616

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ