aa14356ba8ff713a65d2f7a1a9a812cc_JaffaCakes118 | Triage

Sharing

General

Target

aa14356ba8ff713a65d2f7a1a9a812cc_JaffaCakes118
Size

284KB
MD5

aa14356ba8ff713a65d2f7a1a9a812cc
SHA1

26b37444f8402c114fe6167bd1186474320c0fde
SHA256

8a4532ddd061aadfd23bb3f7cba8090ebae4e1de22895ccc6781a861f1b05544
SHA512

c5fba953f98f27ebdb5b5f551ed4e11ee981a01ec59db092c136e20a4c30a5d8e5dfb729835ad1df6d86fe557a177e02ccfd12e47f863e1de80493ba80c0de61
SSDEEP

1536:1CbL6xLGoavxojZTH+odmGwYycyb/9jT0c+BqAdb6InMUiZxs+F:1CbLOLxavwTeCQ9udbaVZxs+F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa14356ba8ff713a65d2f7a1a9a812cc_JaffaCakes118

Files

aa14356ba8ff713a65d2f7a1a9a812cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b6604e9bbec98c55e9a1b7db76c835c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord300
ord595
ord598
ord306
ord525
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord716
ord100
ord610
ord616
ord617

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 152KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE