8842e9bc815ee5ea94bb20bc744dce2d_JaffaCakes118 | Triage

Sharing

General

Target

8842e9bc815ee5ea94bb20bc744dce2d_JaffaCakes118
Size

219KB
MD5

8842e9bc815ee5ea94bb20bc744dce2d
SHA1

efd18e92bab563e8d15161b17c56e5369a033702
SHA256

a11b48deb62eaa541ecdf4155f015cc723f82cc35baf1bd8fea60a30688b9f1e
SHA512

ca74be2373b630dee5726b7918de311161085c736b784862bde45d285b42bbfe69dfb4f99a596d58af28b6532ce6ff157d4b33f647bd6d2e08d819ece153dc23
SSDEEP

3072:vTnPOjh9u5j+kQiLynM0qm2etDI2nLLEN7Uv9pDNxDSHfv7qsDqdJqW:vrPOjDu5Kk2M0LEivDNRSHHZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8842e9bc815ee5ea94bb20bc744dce2d_JaffaCakes118

Files

8842e9bc815ee5ea94bb20bc744dce2d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

636f8277d07aaab7463a4cc8509744d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord708
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord710
ord711
ord607
ord530
ord536
ord645
ord570
ord100

Sections

.text
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ