124a3cf5e308ec12cc3121452f558360_JaffaCakes118 | Triage

Sharing

General

Target

124a3cf5e308ec12cc3121452f558360_JaffaCakes118
Size

36KB
MD5

124a3cf5e308ec12cc3121452f558360
SHA1

e8aa65c26770be7dac4f3fcb912d48053f93de6f
SHA256

380d69a88a190350a6aaacc952f989a51554eaf8ed8bfeecb077a0cefbfe5edd
SHA512

e5dac38edb09d679ca701993168e5776cec82b80e7f33ba42cdc43990359e4d62e314024707759b1c0af11ddccb327cbf61517c7da92079c95ac59f43b9a0127
SSDEEP

768:5xTir145ISlg45/V/jU8ODh/KBDo3E7z56tA6vXox1npFxf+SsLALW:5Qr1gI+g4Fpt6pKBDo3E7ctA6vX56

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
124a3cf5e308ec12cc3121452f558360_JaffaCakes118

Files

124a3cf5e308ec12cc3121452f558360_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7afed580cd72e5f4bb04353d08489b60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord663
ord669
EVENT_SINK_AddRef
ord561
ord677
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord717
ProcCallEngine
ord644
ord570
ord100
ord432

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ