dc9ec1b195f5b1027bd9e2b2574dd53e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc9ec1b195f5b1027bd9e2b2574dd53e_JaffaCakes118
Size

190KB
MD5

dc9ec1b195f5b1027bd9e2b2574dd53e
SHA1

2a65850ec95be5fb3eb2253b4062e8634cab9bc8
SHA256

a3810783de04712e3fca19f2df054243d368c518b3ca2f7d69cb0b1ebe74e61b
SHA512

1ba435d54cae8d04c50203bb2b867ed001922acb59198a75a57b99722f7550779242f22fbdd44027ac47e096eb8acb33d76007f8b17e237ffbfe71de8a0e658a
SSDEEP

384:+3DjY2tq0Uuz1+aTDM+CgI4ZB87j4Altljc52qYnhE7JEi28F9CAUyVIUItSTlFD:Ovtkd4/FdK1KG9E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc9ec1b195f5b1027bd9e2b2574dd53e_JaffaCakes118

Files

dc9ec1b195f5b1027bd9e2b2574dd53e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5d9dacb4c9a9661820a262382bcb3a95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord598
ord709
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord717
ProcCallEngine
ord644
ord537
ord100
ord616
ord581

Sections

.text
Size: 186KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ