a533908a52cdc1d4b1eb34c0abdec51d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a533908a52cdc1d4b1eb34c0abdec51d_JaffaCakes118
Size

248KB
MD5

a533908a52cdc1d4b1eb34c0abdec51d
SHA1

84a17931fabc2f246d101f4461820dc4f6ec0676
SHA256

4ecadd5d6b2805b08741d55591ca77bec253c3e30aeae317e0814a3b6074294a
SHA512

b4781ecad5936ba47da989e79f7adfd1c65ea3c31f80f5487cfe0f9d194a505a1c72804825f092377baf5463fd33fcabf43da1e0e3410ac130309b168ae721c4
SSDEEP

1536:93ZMJ249icel/Z01/NBX4UDpegM3zwACUJGLq42GrElP2T/1oHd5RVJ6wm2aEean:wX0e1FB/DpKjCLHAm2wXbU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a533908a52cdc1d4b1eb34c0abdec51d_JaffaCakes118

Files

a533908a52cdc1d4b1eb34c0abdec51d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1b3cc5b1fb98610025debec30ccc3ce0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ProcCallEngine
ord537
ord644
ord573
ord100
ord619

Sections

.text
Size: 240KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ