a2e483df4b3e4947d1c63904a487430e_JaffaCakes118 | Triage

Sharing

General

Target

a2e483df4b3e4947d1c63904a487430e_JaffaCakes118
Size

32KB
MD5

a2e483df4b3e4947d1c63904a487430e
SHA1

28951880c46d1994c345c75e4f5cc9be4a0faccb
SHA256

75f7dfec954c33f0ec28824bc02cbf64904a82e48c3d5b7c7ab9a444d33fdb06
SHA512

d43e74eb458d3382f376cbe02df8017f71ffad5ed76a8dcadc24422ea37ebbe284c05328a36a0cda5897a8c52c1ccc23c4c1fa5022b1b52495011da66fefd4d2
SSDEEP

384:YYaGsZigXQnL5J6A55eVBtBzJNwV75+LoJzpn+rIwbFlCsEEcuQnrZ2yv:YFigXQVJtOY75+LazpC7FI40t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2e483df4b3e4947d1c63904a487430e_JaffaCakes118

Files

a2e483df4b3e4947d1c63904a487430e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09c26f570a7aae00344abea739e980d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord667
ord593
ord598
ord631
ord525
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord717
ProcCallEngine
ord537
ord644
ord570
ord100
ord616
ord581

Sections

.TEXT
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ