d62b5f917151c35598790ddee1352d39_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d62b5f917151c35598790ddee1352d39_JaffaCakes118
Size

888KB
MD5

d62b5f917151c35598790ddee1352d39
SHA1

fe2cf4ff11a49f9656d0717b15957eee0d23879c
SHA256

02ac5f15bd100fd80f02a1c8517bf84d6ea07367199221268205616c4a2fa0d4
SHA512

fc824f8e63db2751ac733d3002d8fdba18a99b494ad818556b9761ae7c513544d25470734e05b2ae5d74bd1b8edaedf37b6bbae6ba9f8f685d5f7dd297fd45ea
SSDEEP

24576:gxmY3IJMQs2a1OWR5XfRFq1JYD6tReaThXFc+UDORHEU2sHzQ+sp+sJ15w7p:Vi5Up

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d62b5f917151c35598790ddee1352d39_JaffaCakes118

Files

d62b5f917151c35598790ddee1352d39_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0e8633bdb66f968d0e7b315d02abc23c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord598
ord709
ord631
ord632
EVENT_SINK_AddRef
DllFunctionCall
ord563
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord644
ord537
ord681
ord685
ord100
ord616
ord581

Sections

.text
Size: 864KB - Virtual size: 863KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ