d6d3a5dca044b0d930b4df147e49345e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6d3a5dca044b0d930b4df147e49345e_JaffaCakes118
Size

68KB
MD5

d6d3a5dca044b0d930b4df147e49345e
SHA1

8aa545b81a3828c003921ca84dfaf577a8743d3a
SHA256

6ffc4b3b54158dce86c1127f0c1fb3da60c62765dc91b1f1ea141e7476077d98
SHA512

1161433b3558c2f7dc99d39230f0a8e70a8b1d323f01ae4f4e28a4b6bd65c3f8d00aa2dc8a1f3d17432b674c7035ea30f7bfeafccf6f907309990ed6d144b24d
SSDEEP

768:TmHtdOxLC1lwSzZeTWS3vuY32z1a69fu12Yfw12pOjT/4Y4bvZnAI:TQrOxclwgITfmY30c63Yfw12Qj7ENAI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6d3a5dca044b0d930b4df147e49345e_JaffaCakes118

Files

d6d3a5dca044b0d930b4df147e49345e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

47ac3c656c843c1f2b069f023a266b07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
ord695
ord698
ord557
EVENT_SINK_AddRef
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord531
ProcCallEngine
ord100
ord612
ord542

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ