d03e9273bd100cf6e84d29b89478680e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d03e9273bd100cf6e84d29b89478680e_JaffaCakes118
Size

28KB
MD5

d03e9273bd100cf6e84d29b89478680e
SHA1

3b80d870893887914c886b93b98d9863bb4715e1
SHA256

1485b1f016548848cf9397444c481effff9ca1ef739c1925111525a75847a327
SHA512

7a6e339d0dde6b14915a8fc45ba989ca770507c80acca36ae8c044c77938433f8069473aa6dd0abc9197071b8cdcfac6c6d2535df7bc9ab5fbc020642425ade5
SSDEEP

384:fcXRNg0pzoUQjNlRxcDI+w2VHf49Cd+8h:fiPox5lrIb9J4Cr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d03e9273bd100cf6e84d29b89478680e_JaffaCakes118

Files

d03e9273bd100cf6e84d29b89478680e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f4febd439ebedaa6de9ccc9a3ef9761b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord598
ord525
DllFunctionCall
ord569
ord601
__vbaExceptHandler
ord717
ProcCallEngine
ord570
ord648
ord571
ord100

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ