abccc9ee351cc3be7a20e22f69820f97_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abccc9ee351cc3be7a20e22f69820f97_JaffaCakes118
Size

348KB
MD5

abccc9ee351cc3be7a20e22f69820f97
SHA1

0980c460681e4d656e533dcc8b4d977fb03394a8
SHA256

54e84188ac5804a1015d964e7151522925f00ef93cca7577d110f19a35ff10ce
SHA512

498e909dd49dd37033e9d2cec0e72b54be765bbad8643003aaa306ce72b13abbc459d89409a3b22e5f23870c3b019a1b5cde40667d4eac19a34bda9dadf56204
SSDEEP

3072:OcZCNoDD7f0D/Caokqw7N4aiPTzeoVWfEYwko+12uf/0R4OnDSl5gDRWN:dZCGDr0LG1ai7nVgEY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abccc9ee351cc3be7a20e22f69820f97_JaffaCakes118

Files

abccc9ee351cc3be7a20e22f69820f97_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7273ef992fa8145deffa4d21071e82f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord519
ord662
ord595
ord304
ord598
ord520
ord631
ord632
EVENT_SINK_AddRef
ord528
ord529
ord561
DllFunctionCall
EVENT_SINK_Release
ord600
ord310
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord312
ord606
ord714
ord608
ord717
ProcCallEngine
ord537
ord572
ord573
ord681
ord685
ord100
ord616
ord617
ord619
ord546
ord581

Sections

.text
Size: 332KB - Virtual size: 329KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ