a45e282c59a6a6b6a065f00544ddff47_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a45e282c59a6a6b6a065f00544ddff47_JaffaCakes118
Size

60KB
MD5

a45e282c59a6a6b6a065f00544ddff47
SHA1

dd9a3856917e94df69ca942c43a37b7c2031ee0d
SHA256

d7d06850a8db1266bff6961ee5ceb65f18e3a1db06bf1727562d35005ba94145
SHA512

c842704a2d357d71304e7d0bcf8cd44cfac3b9cb0e38c39b19bd532df30bbe9279b75d2a70235ecf262f36ac82c72c26138f13d89ffd61f0f481ee05581074d4
SSDEEP

768:eFQ9mRNzx022NYhC7/JzvQxNsGeNPXhNDz0MMEAQAt0q37TlQVPMz3d:4Q9mRZh2NYaE0G830MMnQACS7TaVUr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a45e282c59a6a6b6a065f00544ddff47_JaffaCakes118

Files

a45e282c59a6a6b6a065f00544ddff47_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3be736ba74958f3dc8dd295ec266782

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord558
ord592
ord595
ord598
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord605
ord607
ProcCallEngine
ord537
ord685
ord100
ord689
ord616
ord618

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE