8230e43cf7f02466dc7075ea9843b60c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8230e43cf7f02466dc7075ea9843b60c_JaffaCakes118
Size

24KB
MD5

8230e43cf7f02466dc7075ea9843b60c
SHA1

f485c46b370c5bb2353cb20c1bfbe3fc867fc31b
SHA256

7d09cdfe05f3f490401f55a4c795c7463aae48d0792e07ac2c58ccda0b346a3f
SHA512

e1e8466e145d54002ad833e0555bf04e30fde44607fdc0a34aa0d4e9c2b482fb9f0c7ce535920cd73769e513518e6ac0e4aac349ca503233f8952c13eddb5dcb
SSDEEP

192:Bvdc+TVUnGpKQhhal/h1JTzRcKE+5VgBdHgDt7OuBuZF9fal:BvBWnQKQral/h1JJEq2gD5OiuZbfal

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8230e43cf7f02466dc7075ea9843b60c_JaffaCakes118

Files

8230e43cf7f02466dc7075ea9843b60c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

570d4f298c94a4336f045d9a3fc9cff2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord621
ord516
ord595
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord570
ord100

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ