cf2344aaee68ebbfda17397fb79de32d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf2344aaee68ebbfda17397fb79de32d_JaffaCakes118
Size

12KB
MD5

cf2344aaee68ebbfda17397fb79de32d
SHA1

c7272d131c8270620e4e9280ca505faca7258862
SHA256

e68d1ce066b77c87c45239256b61cd0e927b3f19bf124f954116c6f8df634788
SHA512

5c71cd77ee0a884c7574807c50a4b2fe0330972a48cb9fa4c6e3e983645238da6a8a8ea02f04f5379c39d0d07267087fa29429f59735cadacde5145b57a121f9
SSDEEP

96:pwEEzSNqDs1ytIANuM7IlqDt6/S/KdDWKn0ShIX3Bs2:EDaytIANuMqqDtYDbn0ShIhs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf2344aaee68ebbfda17397fb79de32d_JaffaCakes118

Files

cf2344aaee68ebbfda17397fb79de32d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd1352569303e3b273bd3993f9bd7d7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord526
EVENT_SINK_AddRef
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord570
ord100
ord616

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ