d2fee33257244440ba2fd64380a8d49b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2fee33257244440ba2fd64380a8d49b_JaffaCakes118
Size

20KB
MD5

d2fee33257244440ba2fd64380a8d49b
SHA1

7d76394ad0e9e7c9308edff2bc3cabb83352067f
SHA256

abda00a5bc93541cd0d63aa467b102b8815e037c40c9cbc6c45e710ed0f18735
SHA512

de1eb4d10fa0c9a2499cfffd85be43a9118ee5cc0b8b227365cafb46e343a5a2e26d4e9e9c3dc31b2686f7cd8ba7dc5b069e9ddd11e2e2974710c6e98d167133
SSDEEP

192:2Mmz+aHlSnx0vVDGN0lN3xtJmC4/za4EH:2nNInQT/3xH347ajH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2fee33257244440ba2fd64380a8d49b_JaffaCakes118

Files

d2fee33257244440ba2fd64380a8d49b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0eaae7bb83a4ea270028ab1ba562d758

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord631
ord709
ord525
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord609
ord717
ProcCallEngine
ord644
ord100
ord689
ord617

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ