71ac7b0902df7869f0e32963ac6f58ac_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71ac7b0902df7869f0e32963ac6f58ac_JaffaCakes118
Size

48KB
MD5

71ac7b0902df7869f0e32963ac6f58ac
SHA1

a3216eb1d429132fd4656bcc5e7b3d9cedd8de23
SHA256

3b1f317d120fe800e70d305a62a192102b2c226f2deaa355b3b850a0c2488057
SHA512

9d468c5d4b6cd665ffa6b5f9e8c77e0900d857305c3127922f44b506f4ef95e7474e1c2a6c43edb4e0fb939dbb30c9894af916c93ba5f79306277686a24d1f25
SSDEEP

768:TztAm9DJwTsgoFB5jcN+e86GTJYhRb9xsQJseAhaE/t7Mp8:dvisgW4N+e86GTw2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71ac7b0902df7869f0e32963ac6f58ac_JaffaCakes118

Files

71ac7b0902df7869f0e32963ac6f58ac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e383861bc63faaeeb302858ebfe82c96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord517
ord518
ord519
ord626
ord666
ord669
ord593
ord594
ord595
ord598
ord631
ord526
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord607
ord608
ord716
ord717
ProcCallEngine
ord536
ord537
ord644
ord645
ord570
ord572
ord573
ord681
ord576
ord685
ord100
ord616
ord618
ord581

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ