b799b070c659d059c0921ba607815b0a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b799b070c659d059c0921ba607815b0a_JaffaCakes118
Size

32KB
MD5

b799b070c659d059c0921ba607815b0a
SHA1

4ffe4e25f442f696e26b1c15829a9fb33ff58841
SHA256

d82dbfc7b9d522ead8c6ba9015b762f7b22650d7bfd51b52f64a0ffd716e9523
SHA512

0294122fe0759cdfe9c3cab3bda2f9609e92c6fb76626d1d5bc045caeb32c52bfb03a35a05564c86f74a784f346fbefeed3734af24b5da93da7f413695499723
SSDEEP

384:f6R8yu8e4o8e4y8e4Z08e4Zr8etlN0+lMdasO/5VpFVoqV+Rm7qEY08luV7e:f48b6o6y6q6RX0+lMdassVXVoq7GDzw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b799b070c659d059c0921ba607815b0a_JaffaCakes118

Files

b799b070c659d059c0921ba607815b0a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

454f4859247f796580da0660fa0f3489

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord620
ord621
ord516
ord666
ord631
ord632
EVENT_SINK_AddRef
ord529
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ord531
ord716
ord537
ord648
ord570
ord571
ord576
ord100
ord581

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ