fe7f23dd6174f4170eb7873e852db8e6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe7f23dd6174f4170eb7873e852db8e6_JaffaCakes118
Size

315KB
MD5

fe7f23dd6174f4170eb7873e852db8e6
SHA1

8aaa5248e36101d40e84d69d5010fd3fe8b07e01
SHA256

d79cc60de577d1e0c7d7fbb785512dd113f0b6fbe194003cc753c34aa4ce44d1
SHA512

7c0737d3fb03d3627fbb239780db9edbbaa164f567b7ee0e67271b97a38f50749451f4f7308fdaba848b84e4ea54b171acbd016946b767261c97854ef7ce53ea
SSDEEP

6144:/i8CD+alF2acgufXHI2O0qNIQTA97g1tgDxQQz5x1A8JA2zC//oktem5bo:m+a3bcguf42OqQTi5mQz28Ji/5emBo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe7f23dd6174f4170eb7873e852db8e6_JaffaCakes118

Files

fe7f23dd6174f4170eb7873e852db8e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

33108074e74868649289790a6d175762

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord595
ord520
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord607
ord608
ord717
ord644
ord537
ord573
ord681
ord685
ord578
ord100
ord613
ord617
ord619

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ