cdeea0431e0faa0cf5268a5f2f30a03c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdeea0431e0faa0cf5268a5f2f30a03c_JaffaCakes118
Size

24KB
MD5

cdeea0431e0faa0cf5268a5f2f30a03c
SHA1

c0f171e61059e5df13b460134d8648641f2ec543
SHA256

0b04ac478d5b3f6485b5b2270046c983c3853e0798266861df4fa000b9fb4990
SHA512

7d1d46798c267566a0134cfd865a980297669ce5468414bfac8150125e23fbd79fadfd5af0056bd0f3a0aa74e194a5ea1df4ff5775745b4442f6f6c2e730a62e
SSDEEP

192:6x+qEA0SXFHe2ZP3y5w3xW5DrRxwcmG9jAzE13kj4nx4lbxCBMTE:6x8KFHfZPi5wotRxwcBjAzE1t4lbEB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cdeea0431e0faa0cf5268a5f2f30a03c_JaffaCakes118

Files

cdeea0431e0faa0cf5268a5f2f30a03c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f7ee07123fc1bf0f6726c561d633a548

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord631
ord709
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord609
ord717
ProcCallEngine
ord644
ord100
ord689
ord617

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ