c91955de2827aa0fd712eac9c490e394_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c91955de2827aa0fd712eac9c490e394_JaffaCakes118
Size

33KB
MD5

c91955de2827aa0fd712eac9c490e394
SHA1

83865798325861afc40796870e9d24756149b070
SHA256

8369adda47be7ebe0e7f6fca77e59de3ed01530d2fe3341de21dccbc884220fd
SHA512

88e74635afa58473a71eb411c7925568a5f2ef0258e192618ef0ad9ab6ca8b857f4df8ac4c8dad2cdf3d3f28ee4a084b85e6b33b5f841f5bf268feb09496bb4e
SSDEEP

384:gqmiMVvjDSlYJ2x8glne45DQ+y6j2PS9gXnUduoVunD929+58eayDGlSZCvo/Dyk:g0MF2rFQ4VXj269MoUDtQyzp/ek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c91955de2827aa0fd712eac9c490e394_JaffaCakes118

Files

c91955de2827aa0fd712eac9c490e394_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6c1dd6e9e441b979d2c21ef29f4c5f76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord631
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord607
ord530
ord717
ProcCallEngine
ord648
ord570
ord100
ord617

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ