a584a520119459959e2c7d7a1e45c19d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a584a520119459959e2c7d7a1e45c19d_JaffaCakes118
Size

32KB
MD5

a584a520119459959e2c7d7a1e45c19d
SHA1

6ad8d1dd3884e7bedbf347b5cb79e18dbb25307d
SHA256

4952769a4c3c8879b02a4e932ab9d4d9d5dd0eed1ecf75180b9a8f6095559ac1
SHA512

6f5ab16facb81612a2d6f1235e8ebf3188440d827124fe8b2d3aadb0891233ea97472197aab472e8d318a736f4ccc258ad2c05fbabf1719c3b6c2c9edb6f0757
SSDEEP

192:V+bN9lgbNOJW8SbNq9xurwt30siSXEUmVRNugon9bNqYbNOJW8ybN9l:obHlgbQSbo/0Twn9boYbQybHl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a584a520119459959e2c7d7a1e45c19d_JaffaCakes118

Files

a584a520119459959e2c7d7a1e45c19d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54f65f07f3c5110fca96365066215033

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord531
ord645
ord100

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ