fe150f63a2acebeb3b1e4bbe31b275ad_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe150f63a2acebeb3b1e4bbe31b275ad_JaffaCakes118
Size

56KB
MD5

fe150f63a2acebeb3b1e4bbe31b275ad
SHA1

6f472218b3d55348fa0777973fc171379c02209b
SHA256

f74c8899fea73f26e73a33ed9bcf97f681254aaa369361b0d12d7dc17e9b1cd0
SHA512

5e497a49bf6db157c8664548d82eea4c7ad5f224c48b8445ece38ea6d6c86f767703cbe1f9824dcbae03e7eb4266edd5ee3d3fccfdfe1301e00c69e4436024f0
SSDEEP

768:uPoFPuWKaT1SuOapwZHq/3j4UGdNWwbhsEEY8V+s+Sun2:04uWKaT82WsEE14S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe150f63a2acebeb3b1e4bbe31b275ad_JaffaCakes118

Files

fe150f63a2acebeb3b1e4bbe31b275ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c8cdddf0df3310270fb000598d33ff52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord666
ord595
ord632
ord526
EVENT_SINK_AddRef
ord528
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord717
ProcCallEngine
ord644
ord573
ord100
ord617
ord581

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ