b7414bc01b68b41bb590f386f3ef043b_JaffaCakes118 | Triage

Sharing

General

Target

b7414bc01b68b41bb590f386f3ef043b_JaffaCakes118
Size

782KB
MD5

b7414bc01b68b41bb590f386f3ef043b
SHA1

c2bcba593bb92ed31f62722a5092ce213ac597f5
SHA256

ef8b0ee815859434a3aadb1718174b5810d36bfe1969ff8013737edce631ffc5
SHA512

d8f62814f09388317c3ee6ac2ad3b5cec9d81918d75d8f40384432b844f4610b399862d02c4cc1ea8a3d83a177714a24ab77837249490f4a16e078fcbb998f8c
SSDEEP

24576:U51bZcLt7bY+oKJdi8vwIu2+Io4BermnaCM3GMm8Kw:Q1CffdPwIuWoMeC3M3GMma

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7414bc01b68b41bb590f386f3ef043b_JaffaCakes118

Files

b7414bc01b68b41bb590f386f3ef043b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d49662980b0207580148ae62b39946d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord631
ord632
ord526
EVENT_SINK_AddRef
ord627
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord607
ord717
ProcCallEngine
ord537
ord644
ord648
ord570
ord573
ord578
ord685
ord100
ord619

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

� ��
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE