fa193e7cd237ba83e095a35a3f0c2120_JaffaCakes118 | Triage

Sharing

General

Target

fa193e7cd237ba83e095a35a3f0c2120_JaffaCakes118
Size

96KB
MD5

fa193e7cd237ba83e095a35a3f0c2120
SHA1

ed00019a9bc0f88ded9687897544674e2523f31b
SHA256

bfd94019bdad1f2a5caadedeaa0756258d170ed8f771d28eb3ea46672a4a3ef6
SHA512

84b1f245eea886e6c0dd1f02d8e5f49fec2c5ebffa7f2dbe7861a232dd8f62ba16a210063a09c6d0d9703b776a0bacf2540b0921a5938aa1ede79c487d55d7d2
SSDEEP

768:JJy9GLGDM4fQGZxLVoSV7MAFKG1taA5YoC+D/9feC6ZLReC6ZLKm:J8C+t4G7MiheCipRipKm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa193e7cd237ba83e095a35a3f0c2120_JaffaCakes118

Files

fa193e7cd237ba83e095a35a3f0c2120_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69eaf1a7b3d0b4e3001ca739665acb6f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ