13f305ed84c880fb2430ebd7cb7e57af_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13f305ed84c880fb2430ebd7cb7e57af_JaffaCakes118
Size

46KB
MD5

13f305ed84c880fb2430ebd7cb7e57af
SHA1

23a956b6c9d6c5627018b4dd2c214d9685e55dcd
SHA256

e2f617d538c1cc0df8647bb9afeef6543c8461bc0b77da8743b3e2b8ecf33253
SHA512

11fd0036a1ba4ba94cff6380bc6f14e32fa9c1f2f1edccbeacec74030d7c3259f0dc9c0346fcd08382f34bfa5bd581296b543a84d6f656f1920c8df8ece8a6da
SSDEEP

768:a7LXVWX/jifdc18WseS4Lfp97o32sr8JYdVIQr0PHFQ7hk80d:WLXVWX+WFL77omsYYdV30N4Ps

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13f305ed84c880fb2430ebd7cb7e57af_JaffaCakes118

Files

13f305ed84c880fb2430ebd7cb7e57af_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ee459202d13685d56cc5faff4639e09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord644
ord570
ord100
ord616

Sections

.
Size: 15KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ