0aafb85c833886ee58134e1c8d5c31a8_JaffaCakes118 | Triage

Sharing

General

Target

0aafb85c833886ee58134e1c8d5c31a8_JaffaCakes118
Size

1.0MB
MD5

0aafb85c833886ee58134e1c8d5c31a8
SHA1

824fd677093a5c98991806da7ddabbab0c15986a
SHA256

7a112ee413240ba5f5e6d99f33aaf203c857f5d240ac06d3b8381a6a7797ff82
SHA512

ea341de997508691bdefb81717928122cd97b60def491b4aadb96779e07b380f9321641af28f290d8486401673356d50e2d0a06764c647f6d8d980a93434956d
SSDEEP

3072:ywRfpkcDuXl4D4b32+XwLSdSD1tj2m/XhIluTZHbG2XdF/78HJDH/zPWSU4i5mmD:ICdNpP1JV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0aafb85c833886ee58134e1c8d5c31a8_JaffaCakes118

Files

0aafb85c833886ee58134e1c8d5c31a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7dea642127d9735a3a9dead67823cef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord644
ord100

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ