cea28866fd84216a1f226742a95f199b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cea28866fd84216a1f226742a95f199b_JaffaCakes118
Size

6.4MB
MD5

cea28866fd84216a1f226742a95f199b
SHA1

1cd2e30d29358d4010b64ee45f63be42f8d0617f
SHA256

8c2cdd4117a1277cb32c442456bb0b74e639cca9dc50eb92c6ae55ca2ab3ec45
SHA512

33d3f44d6974b6c97b61d912fe773c59544a66d9120d2db4846aaa0d98f05d84c44d8f8f1af107d01b5d51dbc6bf9d615e6a22fb66272945e48da55466566335
SSDEEP

98304:g9NqhS4h6QV7qwlJkU3RjhxBPrBob9ZtRfar3voWqwCmcYcPjyOEFPnVB7mF:g9Nf05Hk4RnBPrBobp5I3xD4eXfV9A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cea28866fd84216a1f226742a95f199b_JaffaCakes118

Files

cea28866fd84216a1f226742a95f199b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65f4d2958571a80d78566530d2650a35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord519
ord667
ord593
ord594
ord595
ord631
ord525
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ProcCallEngine
ord537
ord570
ord685
ord100
ord616
ord617
ord618

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ