daeece4b745624fcc7e1d45f05d57600_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

daeece4b745624fcc7e1d45f05d57600_JaffaCakes118
Size

152KB
MD5

daeece4b745624fcc7e1d45f05d57600
SHA1

4671304c135b3e072331250c951a87f8af0cb1bd
SHA256

0a64f857ebe9e0ce1904e9d1544d4ce73f763a4323fc3fd8fea5bc90ec021afa
SHA512

b5cf37d16e1db11c0533655f249141f7930a3140ea5de6c100ac839e03500697b754d63d0d1c2903e86c3b06f6bf9a5032922c4f4b61e601ab8e639e1f0b5825
SSDEEP

768:mgku9r8wMiLJRh59p865JdLPgQrEcdSNEWZpKqupvQspraeDxdC5HwV7j3y1CgkW:ez8RZ865JlPRUqrO5Igkb4vb91bNF6E3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
daeece4b745624fcc7e1d45f05d57600_JaffaCakes118

Files

daeece4b745624fcc7e1d45f05d57600_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2afdd4f403a3ad64c6c4adbe1d38a60b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord665
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord100

Sections

.text
Size: 144KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ