8bf5240aacaeb6a7fe5fd1f8a568681f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bf5240aacaeb6a7fe5fd1f8a568681f_JaffaCakes118
Size

144KB
MD5

8bf5240aacaeb6a7fe5fd1f8a568681f
SHA1

415f3779c81aecb8d159b4c918d6cc95867c1783
SHA256

47eac6b62456ee8ce53c673a14cbb51d258fbdc4b14bd55dd1da926e460371a4
SHA512

f891fc097995e039f68d95106347dcb9e314e759ad42df1a5e04a00f69767cabe87aea796f2da3c6440c16ad01f2006f3b9095c560529c2f4e5f49909baa9a6d
SSDEEP

1536:lwtIVXK+QmlHE79W22FPeOn62Ucw91tK:k/Y+7IXdeOn6221tK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bf5240aacaeb6a7fe5fd1f8a568681f_JaffaCakes118

Files

8bf5240aacaeb6a7fe5fd1f8a568681f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b99b16d0093f357c814f82da170a2265

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord644
ord537
ord681
ord100
ord581

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ