ad4ef898f1fe180847734a4f97784858_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad4ef898f1fe180847734a4f97784858_JaffaCakes118
Size

292KB
MD5

ad4ef898f1fe180847734a4f97784858
SHA1

28eba2a6accb59d7f0dc7c4d83b95ea6cbe5c7fe
SHA256

46d1869fc83e24012884ee2b0a83cf1c86e04027fb2e08412fe40b83a034960c
SHA512

06118b5ca61c67430d338b2b1da9cbe48977e33a1ae3fef4ea99caec8e621d4b23b770507c2913d0de56e85ba517e4aee8d431ef52bf80129613db8656ed4f6e
SSDEEP

6144:VmYkW4dScEH+/kl9ZBX5pzAnQJ8UJppXaATKAv6Tu5pOfH9bad7b:WW4dSr4S9f5pzAgzTNv665pUbs3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad4ef898f1fe180847734a4f97784858_JaffaCakes118

Files

ad4ef898f1fe180847734a4f97784858_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bcd77d33a4e1cee55f2c124644881305

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord593
ord598
ord526
DllFunctionCall
__vbaExceptHandler
ord711
ord713
ord607
ord608
ord717
ProcCallEngine
ord644
ord570
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 276KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ