777e387520753bd04c186b3cf6a816b0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

777e387520753bd04c186b3cf6a816b0_JaffaCakes118
Size

252KB
MD5

777e387520753bd04c186b3cf6a816b0
SHA1

5c2d26ae92f7a680c5e645481ef598e9edfb1e11
SHA256

c670f246c98222b64c2911109a4a5b7a46f0e4febb0c971fbda2ab525e3dac1c
SHA512

26580e8f2b4036c2f30e45405a352cb640e00e96b040fc337223c35e0b4670250269cb9a363715e9d84bfb2c69bea27f7b44de127f3f4928388c85644eff36a0
SSDEEP

3072:0KIlPKaOn5HQGFgke2Q3bXLzDwNu89r21QgHSvZMlKTfGrR1/jZtwi/7sdVf:DI9oHQGFgkoXP+TOQgGZ9+dJwMS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
777e387520753bd04c186b3cf6a816b0_JaffaCakes118

Files

777e387520753bd04c186b3cf6a816b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

35790ae3444c93b9c33af059ad9aaac0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord100

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ