bef813360292736c6c08dac0e8ef60d8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bef813360292736c6c08dac0e8ef60d8_JaffaCakes118
Size

33KB
MD5

bef813360292736c6c08dac0e8ef60d8
SHA1

50f9252887613f3c0ca06c59ca08bf8dcc977076
SHA256

77498cdd0d893916687748eff1a02f43d8d439d3c67239baeb29f57bc36fe8cb
SHA512

8952b989cc261f6fe40b63f7c158888002e437b65b7154efea5e366685423bd217d54bcd43fd79bb730b6d0ab7d11a5e2dfdda9d800d616710824238bae7fdd6
SSDEEP

768:iVS77B2H6lywjhq7iTh1DdJh0EJHMVht:iVS7oaz1Dd8DTt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bef813360292736c6c08dac0e8ef60d8_JaffaCakes118

Files

bef813360292736c6c08dac0e8ef60d8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7dde988c5309cef785932789e02cf3cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord595
ord631
ord632
ord525
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord717
ProcCallEngine
ord537
ord644
ord100
ord616
ord617
ord581

Sections

.text
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ