71bd63c82ad7665434ba139ef86b56da_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71bd63c82ad7665434ba139ef86b56da_JaffaCakes118
Size

272KB
MD5

71bd63c82ad7665434ba139ef86b56da
SHA1

7847b0d3cddfa8d98571369d0e56231f27b50f65
SHA256

d444595b137c2904dd15bde9acff86bb1285f6af8938661c6527cc4f980c9fa0
SHA512

b98276985f2a1765451de90e86418f83f4bf53089b490318229bfa25eae34875560e8c11eb9fa3baa9d90078f91b4da50fbd6c3b78f63ba871a2b44dfd817cc0
SSDEEP

1536:BEbMJ249icel/Z01/NBX4UDpegM3zwACUJGLq42GrElP2T/1oHd5RVJ6wm5TE7c7:JX0e1FB/DpKjCLHAm5QD1QblrNh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71bd63c82ad7665434ba139ef86b56da_JaffaCakes118

Files

71bd63c82ad7665434ba139ef86b56da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d24e3fd6206bab90921e1d21dc966aba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord665
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord537
ord100
ord581

Sections

.text
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE