76bb3d7f23efdf903bf329ed44c37e29_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76bb3d7f23efdf903bf329ed44c37e29_JaffaCakes118
Size

127KB
MD5

76bb3d7f23efdf903bf329ed44c37e29
SHA1

c3af1206e2bd1449d6a92398f722292b11e1585d
SHA256

9b57ed770035b75c29402cfee45b6fa3079aa4f2778fe4f884bf2ce30c06f81f
SHA512

5d45757bf62a03948c3ee75763a1abd5b75975b940bdc1d3dd9db3964a32c6641dffafd2df2cc9c271b37227a5a6562a2d7333de21b8abe4ab7407a200e8e8da
SSDEEP

3072:y8a1DSSiZdlJYoECbso4mZWezaou59Ivc:Ba0LvXuCgo/7aou59

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76bb3d7f23efdf903bf329ed44c37e29_JaffaCakes118

Files

76bb3d7f23efdf903bf329ed44c37e29_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ca647a3977795872f36236c40ef017da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord644
ord570
ord100

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ