04f5f0ed43bc9f7718c2c3ad448d4ec7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04f5f0ed43bc9f7718c2c3ad448d4ec7_JaffaCakes118
Size

72KB
MD5

04f5f0ed43bc9f7718c2c3ad448d4ec7
SHA1

16b0e27c351fd1fea736448e0a6e580abe98ff03
SHA256

5a8a3e93bfda3b981eaf37c41defda78bc0e0b8720a062deda1732fff7b3a786
SHA512

3b86b0a9d7a2ff7747e5f9b6ddddb14139b8aa285c4ab72a6fae9b3791eab7ecfb66a1417061644cac9a38af1d5837b81b448830962a4cac91f96dfc7053bdd3
SSDEEP

768:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPon:ieTce/U/hKYuKPo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04f5f0ed43bc9f7718c2c3ad448d4ec7_JaffaCakes118

Files

04f5f0ed43bc9f7718c2c3ad448d4ec7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1639b1e17656fed4f63bac94cbb79cec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord593
ord594
ord595
ord598
ord525
ord526
EVENT_SINK_AddRef
ord529
DllFunctionCall
ord670
EVENT_SINK_Release
ord600
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ord530
ord716
ProcCallEngine
ord537
ord645
ord570
ord685
ord100
ord616
ord546
ord547
ord580

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ