8cd206ccdffe7b650e87b85c5c30be1e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cd206ccdffe7b650e87b85c5c30be1e_JaffaCakes118
Size

39KB
MD5

8cd206ccdffe7b650e87b85c5c30be1e
SHA1

a66cd1afb0d00b3db93e310e855af3da29e9899a
SHA256

3d379f8af19406d3e3001e3640239f0c0f8d8c3dfb04401de97e84c43993dab0
SHA512

9395294d02492664b72e42ce8e64db58251d7aac3ffb782c8a57ea317c45569604c3f49c7f21bfe743f5bafbd194615d0184d1c4b35c7ba2e9821dcb530b5562
SSDEEP

768:x1FuMkDCBv09PWIobVS2LzR7qCkPb5fH8qPVO0vGaI:x1FGDhWb02Lzob5fHRFI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cd206ccdffe7b650e87b85c5c30be1e_JaffaCakes118

Files

8cd206ccdffe7b650e87b85c5c30be1e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d1db0393c12b440dab33bc748b4b8892

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord669
ord598
ord631
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord716
ord717
ProcCallEngine
ord535
ord644
ord537
ord570
ord648
ord573
ord685
ord100
ord579
ord619

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ