713f7de9f4d803b42c876ee868aba967_JaffaCakes118 | Triage

Sharing

General

Target

713f7de9f4d803b42c876ee868aba967_JaffaCakes118
Size

252KB
MD5

713f7de9f4d803b42c876ee868aba967
SHA1

86e7e3e859c20f277135d56c41a51b82239a8af3
SHA256

92de8e0c57b60dc418c73debc5581a6d2f5be58a199daf70f946f0734f7aa7f6
SHA512

859e26fdc46bd948c6a7e7fa742b065c23a76f36d3c2407a6eb455968e495e8d739f13cefbe61ac1d48a1999d59e69792bc221f0dba9a096f09f550cd52ad10a
SSDEEP

3072:ioF3CkEnm23lSuURxK/paQFVCIyxZtIbLPISKaTMjD2B9r3nWGtot+OO2ETG/8dX:

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
713f7de9f4d803b42c876ee868aba967_JaffaCakes118

Files

713f7de9f4d803b42c876ee868aba967_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59044e949bc3468d2f323f770ab28350

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord644
ord100

Sections

.text
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ