e23d0152fd58b3025db01d029d6f2ffb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e23d0152fd58b3025db01d029d6f2ffb_JaffaCakes118
Size

140KB
MD5

e23d0152fd58b3025db01d029d6f2ffb
SHA1

5acea0a28af033cd783b9c87a2a26f5387c23dba
SHA256

016665c57f5ca43c29f6fc8788d77461112b239c8585dbcae4a14c3d6085b77c
SHA512

5c123e7ce9728b1a5f4e45ee975f6f2e0c2ad36143f52e55cc726c151832aa2f2ca2f75eb967b3de8e397e9744b9f4572ed0a2170566f34791435e9360303f49
SSDEEP

768:zxWQlUyt4pd04q0zik+vhy7g0EM/LinbQOY75h/m:tVUeEn3+pCg0EUGQOY75h/m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e23d0152fd58b3025db01d029d6f2ffb_JaffaCakes118

Files

e23d0152fd58b3025db01d029d6f2ffb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

41999f591cd5b600e87f7c7288f9191f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord187
MethCallEngine
ord517
ord518
ord593
ord594
ord520
ord631
EVENT_SINK_AddRef
ord527
ord528
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord606
ord607
ord608
ord717
ProcCallEngine
ord537
ord644
ord645
ord570
ord648
ord100
ord431
ord617

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ