a17f3376bdef7d96980a5fa6597ee9bd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a17f3376bdef7d96980a5fa6597ee9bd_JaffaCakes118
Size

168KB
MD5

a17f3376bdef7d96980a5fa6597ee9bd
SHA1

97a6ba53bf279290c5264997a2ef10268a8b829c
SHA256

6a4fe126b70abf21a2c95c800043f533119d17c01b525559a77fbbdc27a37854
SHA512

099b53280a8df962e133e491e9601f649bb78cbabdb5e65b63f0f769f73ceb24be6977645b045e2182a71ba0acbd27662ecda956a3cf7207f0a1fca0e6249d58
SSDEEP

1536:q2PyrJfrZoSpnfREtOIO/UkgCmIay+5nps2SSa2P8PF4KKetlJQNnctZfyxEVOGG:qYsEBsgnLpfBgJQNnct1rVWRuXW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a17f3376bdef7d96980a5fa6597ee9bd_JaffaCakes118

Files

a17f3376bdef7d96980a5fa6597ee9bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

70999d9df1d002da740aa9c544a1920a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ProcCallEngine
ord644
ord537
ord100

Sections

.text
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ