8becebe3ebd83e26e1326c6d570e6169_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8becebe3ebd83e26e1326c6d570e6169_JaffaCakes118
Size

140KB
MD5

8becebe3ebd83e26e1326c6d570e6169
SHA1

748bd6423edfbdf24988fb27beaee2579b3172b4
SHA256

175155f6c14db4824821de72fab7a6e3e710d397131ab125be9586b02ebaf810
SHA512

9a1eba07566273895548a4c3841473d008f2096a882481fb8123908f90bce2e547291a7d22855bca4c9b6aedf55e37f861e2cf77e0f6a92d381f59140a173a5f
SSDEEP

768:j5nO4r8TGff+v/eY4z7VP7LdGSu2HyPTAzfMgTAzfM0CAa5VZcQyQEdNgLS+Lkuj:f+vDo5VZcQy/aLSokMJ76KNMX+Ev

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8becebe3ebd83e26e1326c6d570e6169_JaffaCakes118

Files

8becebe3ebd83e26e1326c6d570e6169_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5e9b446af662287109b36abfbfeb116c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord593
ord594
ord598
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord645
ord576
ord100
ord617
ord542
ord545
ord546

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE