b2d695c4946bc72ea241953a525617ca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2d695c4946bc72ea241953a525617ca_JaffaCakes118
Size

16KB
MD5

b2d695c4946bc72ea241953a525617ca
SHA1

733dbd7edd20ee6967c80dd9070d925e4a61f599
SHA256

ed7cc5faeb5d0a8a02638bb0aba2451aaa70fca4975e78f174101abbdc81af27
SHA512

82a47df759ea51cd3fe248edb07075a4523400f3e90271b4c4f29fe128560989f2fbaa379e6756616da3b721329fd783c4c6bf42189224ed793c742dbc58a1c4
SSDEEP

96:tdXoV1pmPeV8pwFLENn1jeiL2DAM0bFYUdRppq7Ea2:3oVDp8CLEzbMsE4a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2d695c4946bc72ea241953a525617ca_JaffaCakes118

Files

b2d695c4946bc72ea241953a525617ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d0a2054e36212b411a18c8933f9b1eff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord598
ord631
ord632
ord526
ord529
DllFunctionCall
ord600
__vbaExceptHandler
ord608
ProcCallEngine
ord645
ord570
ord578
ord100
ord617

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ