e1c6aecc9fdbed8564c9e485c3bf0ded_JaffaCakes118 | Triage

Sharing

General

Target

e1c6aecc9fdbed8564c9e485c3bf0ded_JaffaCakes118
Size

7KB
MD5

e1c6aecc9fdbed8564c9e485c3bf0ded
SHA1

97a4bf89449f27e04ba795e383e5b7ea55136cc9
SHA256

95d0cb1079a19991faed2af8fd14c8c73809340cc05b184887ca044c286bdbfb
SHA512

4f9edcfe99ef2a58983fb699d015246e6c7c11db9ddc92432de953fa68f616df419c79b1fc8a6e4bba0c8d6aa2d6973f781e1e8bca6ea161b3c6ff8a58b36497
SSDEEP

96:mpdmfVH7prg7jRTdqo4+kXDxwnQsczzI2:W4qjRTf43wnQscXI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1c6aecc9fdbed8564c9e485c3bf0ded_JaffaCakes118

Files

e1c6aecc9fdbed8564c9e485c3bf0ded_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e4541c5502146143582e3cd29381f9e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord595
DllFunctionCall
ord601
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord644
ord100

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 832B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ