107f25a12bc23ea50a0986ca6df45562_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

107f25a12bc23ea50a0986ca6df45562_JaffaCakes118
Size

272KB
MD5

107f25a12bc23ea50a0986ca6df45562
SHA1

46bb4cba19e43659bd8276f5b4ea30b8b60faca3
SHA256

a0c0d558131ac37d51f716dd29d8bbb75afbbf60a1735c05126011d1461ed5a0
SHA512

ce2e4bee55f56a832afa7ad772ddef89d344d1c450b2605cdc25ae1a7b755c63bb0a67b31c6a932585b8b6ef612980eb5ea3da9a528066a84057f6eee3bd7a8f
SSDEEP

3072:l7A+Utn5ymi8Eu11uZaLJbN2SQ3N7Do0JgT5SVtoaKGlD8yWC242UcdRCU4J4lD3:xA+H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
107f25a12bc23ea50a0986ca6df45562_JaffaCakes118

Files

107f25a12bc23ea50a0986ca6df45562_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ff9229934546db7281b7b18ee7014392

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord626
ord628
ord631
ord632
EVENT_SINK_AddRef
ord528
ord562
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord713
ord608
ProcCallEngine
ord644
ord537
ord572
ord573
ord681
ord100
ord619

Sections

.text
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ