b8f5825b669559463fcaece97e9ab9e7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8f5825b669559463fcaece97e9ab9e7_JaffaCakes118
Size

164KB
MD5

b8f5825b669559463fcaece97e9ab9e7
SHA1

cb71066ad7189704e8d295c84584c2ed32adfd89
SHA256

bc0219dcc0c06c280dec609d288a6c146008e5bd24411c1aabb10b10c97daae1
SHA512

468993c147856dda10e2eae036d20e799539319b57c656fd7c697ca53ecbb9095685428a04db74e39c0eaf9880445d55d5728b3dc6ecf2437dc0557c32e99cd5
SSDEEP

3072:MC4vJyfC1Qppvlp9DB+koRrD2UfzfDYF7RsXuBXHCFz7wRptqSfuiua:Dnfz+kw5fzgtsXuhHoCqiuiua

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8f5825b669559463fcaece97e9ab9e7_JaffaCakes118

Files

b8f5825b669559463fcaece97e9ab9e7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

35790ae3444c93b9c33af059ad9aaac0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord100

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ