77db0081901f050c6aec4dcaad3322b7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77db0081901f050c6aec4dcaad3322b7_JaffaCakes118
Size

496KB
MD5

77db0081901f050c6aec4dcaad3322b7
SHA1

ac6a392f8e7f18920a3f3092fc3cd573debba882
SHA256

b7b68b0f043c186b5f913928c7a9990eee7a3bed17438f384fa1769b093df009
SHA512

cb44ec41a3370e0cb2c23dd06abb5780ce66b151f9505593971aca9f544853d1deb5187cc7bd12a26b0fd0221862f087987ba52a7c0b76496707a7560a41d169
SSDEEP

6144:uAQhtKQWX7oJ0W8LXEpfJHAzRyOweWH6NFX3tNs+EuVqBJcFlDGqnN8F5C+J5G7Q:3QXKQuUm+HxeWuV3fXEQGo8FfXG7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77db0081901f050c6aec4dcaad3322b7_JaffaCakes118

Files

77db0081901f050c6aec4dcaad3322b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e39effe6fb5c68acc6fbd119f99481a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

expsrv

DllFunctionCall

msvbvm60

ord631
ord525
DllFunctionCall
__vbaExceptHandler
ord712
ProcCallEngine
ord644
ord537
ord100
BASIC_CLASS_AddRef

Sections

.text
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 368KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ