bc43d446788b17411e93fcbfb04a108b_JaffaCakes118 | Triage

Sharing

General

Target

bc43d446788b17411e93fcbfb04a108b_JaffaCakes118
Size

52KB
MD5

bc43d446788b17411e93fcbfb04a108b
SHA1

2feba1581d518bb2db45ae1aecba15791d55b43f
SHA256

bada672fbfce0a8fe8956b5abbe78d10f98ef8b9de97ce46d6afdd3ec964a65d
SHA512

45cd8ee597c7021a4bdf9244818fd86178244e1b823c4dd385f9a3be764dd259ad4d830e02d2bee282bf26ee0bcc8c9e74851253a36350953120563a010c841d
SSDEEP

768:N7mrV7bj3XhfJkHHYGC3HHDiBh8GwUoRnj58ggbsBYWriGVFhHYYQfqd2fWZ:xShfJm2HHDQwHR9+oxrbfhhQkzZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc43d446788b17411e93fcbfb04a108b_JaffaCakes118

Files

bc43d446788b17411e93fcbfb04a108b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bdcb92aed3f33976625806a0e304bc47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord518
ord626
ord666
ord598
ord526
DllFunctionCall
ord563
ord670
ord601
__vbaExceptHandler
ord711
ord712
ord607
ord608
ord717
ProcCallEngine
ord644
ord645
ord100
ord616
ord617
ord581

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ