8e2fdf12e317b5a7938aa6037c4bbdd7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e2fdf12e317b5a7938aa6037c4bbdd7_JaffaCakes118
Size

51KB
MD5

8e2fdf12e317b5a7938aa6037c4bbdd7
SHA1

3926be8f9fa90dab71cbc02da8b7546fc0604fc6
SHA256

003eec9f0a63ca719c8dfd3a40784caa14f4b57037c8599c795ce3acda5de07c
SHA512

4ada198116c422483b503c3c4b263a1d599b20a41cc76a41609dbfb808ab333c15c015af5c907b66650dc9b7914e7051a8c71a77fae41216779e98deb9ceefff
SSDEEP

768:uApsVIhwz51S91F2uCf7YPiLBw8x2c7n+taUZSDbUIMKwqm4hhbiI:uFlZL7n+taUZH3qm4H2I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e2fdf12e317b5a7938aa6037c4bbdd7_JaffaCakes118

Files

8e2fdf12e317b5a7938aa6037c4bbdd7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c85380fff9da37e067832fc989f51b12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60.dll

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
ord529
ord561
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord607
ord608
ord717
ProcCallEngine
ord644
ord537
ord570
ord648
ord572
ord681
ord685
ord578
ord100
ord581

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ