b3dbd0551fb9b0a668b3c3265c61bf04_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3dbd0551fb9b0a668b3c3265c61bf04_JaffaCakes118
Size

20KB
MD5

b3dbd0551fb9b0a668b3c3265c61bf04
SHA1

98411afc23fdb1ed55be212fbede93d0a22e90b3
SHA256

73bc28a18a23e8d46cdc9fcf9b308328b52b0a918a0a7e4fcf4230d16d59b0bc
SHA512

1b79ffcc58cc6c21e6981f8d385789055eb6eec846694e5c0371007eab49c2ff073e015f46de54f5ab9249965c6b24584cf8c2eef30b43a0316e1a3c464aac05
SSDEEP

192:7gXh0Kt3vq24s1XGmNScSdTUfi+p7FwnNxRFf8:0Xh0Ktfq01XGmNaUq+12T3f8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3dbd0551fb9b0a668b3c3265c61bf04_JaffaCakes118

Files

b3dbd0551fb9b0a668b3c3265c61bf04_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b4948947ea98f501df7687077a5b83f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord621
ord518
ord666
ord632
ord529
DllFunctionCall
ord600
ord601
__vbaExceptHandler
ord711
ord712
ord608
ord716
ProcCallEngine
ord570
ord648
ord578
ord100

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ