757cf960efc4e4a2797db3d4516a83af_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

757cf960efc4e4a2797db3d4516a83af_JaffaCakes118
Size

68KB
MD5

757cf960efc4e4a2797db3d4516a83af
SHA1

ec87d840e0e18769389b292edceee78d5efb602c
SHA256

0a4548ab1b40ee6b09661d9f401573eddc4064e57a2431e531fecbdea7a296ef
SHA512

a8bba61567a4faf8695e95a57ae665a557a15ddcaaf487b35009a9ba32c1b1780b0c52e078264dbabe7d365e53651fd53032517f810554163f98a98f2d03f375
SSDEEP

768:p7rgnvQjXyj2Bo6Ik/gQ/Ksdn6aW5ksg2GXfQlnE07:p7rA6Xs3aIA/gaWRg2GXoE07

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
757cf960efc4e4a2797db3d4516a83af_JaffaCakes118

Files

757cf960efc4e4a2797db3d4516a83af_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f676090b019935f58830140f838b7e08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord591
ord593
ord594
ord520
ord525
EVENT_SINK_AddRef
DllFunctionCall
ord563
ord670
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord608
ProcCallEngine
ord644
ord645
ord576
ord685
ord100
ord616
ord617
ord619

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ