07cbc80ffbdd56dce979e5ae8ea2b550_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07cbc80ffbdd56dce979e5ae8ea2b550_JaffaCakes118
Size

32KB
MD5

07cbc80ffbdd56dce979e5ae8ea2b550
SHA1

95e2d1d5d3f246180aa51e07d54e58758ed26fc1
SHA256

6993eb87d7b954686f2a4c85e0141a6ee138737bf80639061d744c0c7a60229e
SHA512

cfbfdaa63b2582b84d25650782fe1d18895ccdcadd080323eb8112994eab537d603a412caa3db5148a1394ed11511723a4b89a11e4cbf81fb473f927e95aaf5f
SSDEEP

384:4vtRd5DpUvP4jJK8HbuDpUvs+AhrQLkkoaKe+U2IVomU2UYdyv2Igi6XbzH:4vtlDQwRuDQdAhcWXURlLd0ybb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07cbc80ffbdd56dce979e5ae8ea2b550_JaffaCakes118

Files

07cbc80ffbdd56dce979e5ae8ea2b550_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cca93007bde86fab4386d994c9d0abf7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord595
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord717
ProcCallEngine
ord644
ord570
ord681
ord100
ord616

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ