8417b46f074c461118bff2f04a6bfaae_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8417b46f074c461118bff2f04a6bfaae_JaffaCakes118
Size

2.1MB
MD5

8417b46f074c461118bff2f04a6bfaae
SHA1

ade3e858095f862ff15419de80e8b018d1e98d40
SHA256

b3a55b34313fda203365a1423a21b1ab8af079878f44413f0cf26f7f70bbeb82
SHA512

c915645cbd0fa8531b5a3c4f12f4ebef4bd7a0d71491cd3dcb6bb53944cf4c43641c82ec13539c87af28033879dce15db32662f916256feb35ce339166db460d
SSDEEP

49152:vRuE5jBKFjKTVFQ1J5SSLa/e/3hdC4BJyUO7UFGUO7UFGUO7UFO:kOVq1+Z24UO7UFGUO7UFGUO7UFO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8417b46f074c461118bff2f04a6bfaae_JaffaCakes118

Files

8417b46f074c461118bff2f04a6bfaae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

41bf96b42ab583e4d3bcc70cf526ae24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord631
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ord717
ProcCallEngine
ord644
ord572
ord685
ord100
ord617
ord618

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ