a75049fd8bd331b24bea33f2f0d0e37a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a75049fd8bd331b24bea33f2f0d0e37a_JaffaCakes118
Size

355KB
MD5

a75049fd8bd331b24bea33f2f0d0e37a
SHA1

87bc31aacb7c601729e7c1808d2fdc1ed645a133
SHA256

051e76e9099fc2464dc986e8ad7f35332449a8984a01ebc29dcca0506c67f0b1
SHA512

a07b008078e1f6acd4e576472287293d83bc32a6f384bf7d6fa8d03f79cec1ef9da9c936fc20d543da8ba07e08838079a41de47286df0b794ae2b1c2252b9fff
SSDEEP

6144:4HYOepIOuBTKCuRtiBMv+oV6L30AAG0Ixs8HRbvhY3nQZmlkrW:4BBTK7RtiBM2Q6P0Ip5a3nQAlkrW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a75049fd8bd331b24bea33f2f0d0e37a_JaffaCakes118

Files

a75049fd8bd331b24bea33f2f0d0e37a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aefab7c0bd7e14652961d8b8132799cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord518
ord666
ord595
ord598
ord520
ord525
ord632
ord526
EVENT_SINK_AddRef
ord528
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord713
ord606
ord608
ord717
ProcCallEngine
ord644
ord537
ord570
ord681
ord100
ord616
ord581

Sections

m
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

n
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

o
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

y
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

u
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

r
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE