13d1340f13e51d97a6d9868f36bfd2c0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13d1340f13e51d97a6d9868f36bfd2c0_JaffaCakes118
Size

85KB
MD5

13d1340f13e51d97a6d9868f36bfd2c0
SHA1

064e775eb4d63dc26a77a275dc993ffd8d0e5e14
SHA256

1a9d912bb74650da429df1d2b9ab0d4d39fbd1eaa52b0710f9072ec1ac74a285
SHA512

595bac653db46fb5477742ed95613871ecb52893dc4ab2d9b17e2a980f6aaabfcee75a8b711d1748f640c72574cc566e76197f151dc61a9da3e78ecf9a8b0c4e
SSDEEP

768:IejSW00NAgyt0oZOtiaibOBuPpvg7nwJDu3j4uk8KRyfOnzmf7L+lQpvITIeG2Sl:IeTp2V7qiNbSWg7wJxs66f7LjgMeZSl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13d1340f13e51d97a6d9868f36bfd2c0_JaffaCakes118

Files

13d1340f13e51d97a6d9868f36bfd2c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

89b0660183408b866bf5f99442c3944c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord698
MethCallEngine
ord518
EVENT_SINK_AddRef
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ord717
ProcCallEngine
ord644
ord570
ord100
ord432

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ