8edbbb7cd8d1177f40332d6086827b7e_JaffaCakes118 | Triage

Sharing

General

Target

8edbbb7cd8d1177f40332d6086827b7e_JaffaCakes118
Size

380KB
MD5

8edbbb7cd8d1177f40332d6086827b7e
SHA1

18b5af91f00ec441c89244ba2e643ba479b7c5bc
SHA256

d556cf2ccdaa4de5558c341d873a5856c0c18ba1ff81cd6a93b2cf08e6c90bab
SHA512

7c5506572bee0f64bed4d59e2ea467b701e62a2583bf28958a02c1c14ba8d906ff99310c755918925fa9a7890c0db2910c2427ab0920c795319ad72ec7a62145
SSDEEP

6144:RFUlZB+cR3snPOb2yfOzg2hiXvBfKjJDYSxULjA0G78nHTNbrQ3FJb8KSdprFixp:RFoB/0xyfCg2hwvVKjJDYJLhGwHTNbrC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8edbbb7cd8d1177f40332d6086827b7e_JaffaCakes118

Files

8edbbb7cd8d1177f40332d6086827b7e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

358b4aef709e3dfab2bc719ca5ecf8b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord608
ord717
ord644
ord537
ord570
ord573
ord681
ord100
ord616
ord619

Sections

.TEXT
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC_0
Size: 284KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE