c1eabe989bd0e7e0c42e8e862ad712af_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1eabe989bd0e7e0c42e8e862ad712af_JaffaCakes118
Size

24KB
MD5

c1eabe989bd0e7e0c42e8e862ad712af
SHA1

fdd3ff5769c9c54134f7a9e6dd15eb04fd8b6a98
SHA256

2ba6b1ccedd5f98a277d116d5eba60ded65c2a332c8e1e00bb233895eb779ca4
SHA512

1070365ee16f45d48adc5ca0bd061e6c9e97cb4e03a5adc1e0936125b46e45f184454dcbcbc9b42e08c6926602005707b3d8b2bb8a0f95fd37a6afdf7bea79d9
SSDEEP

384:gnolRyXRL5QM0Ov85KlTllB2hiOB0CZ7cqPw:YRqMBv85KlTlCoq4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1eabe989bd0e7e0c42e8e862ad712af_JaffaCakes118

Files

c1eabe989bd0e7e0c42e8e862ad712af_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9f92573a2cd0d15c07c4400d0e0cae7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord631
ord632
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord608
ord716
ord717
ProcCallEngine
ord537
ord644
ord573
ord100
ord616
ord617
ord619

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ