163d5c2b81495c58cd93b997a9b6220e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

163d5c2b81495c58cd93b997a9b6220e_JaffaCakes118
Size

20KB
MD5

163d5c2b81495c58cd93b997a9b6220e
SHA1

226acb8570b023033ea254643162eb256015d00f
SHA256

2427b7ef8593c6d21040713a50c4c9fd655b56cef3ef112f8dd345328ba882fd
SHA512

f9f4c00a5af1db9daa1c9b4a234559a9d8bd6249c6e9f5dffe570e77a30b45b74f90e5390aa7d60b7ab5011711276ebb9ee3c32b250d4601405b138bf0ce53cb
SSDEEP

192:P1D+gI+jMaonIib/6YXVcy4bYXSFMWq+:P1k+1FipVcy4bYCFMWq+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
163d5c2b81495c58cd93b997a9b6220e_JaffaCakes118

Files

163d5c2b81495c58cd93b997a9b6220e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b6415cf977148a19573397dd619bafff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord583
ord690
ord586
MethCallEngine
ord631
ord709
ord525
ord633
EVENT_SINK_AddRef
ord529
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord530
ord609
ord717
ProcCallEngine
ord644
ord100
ord689
ord617
ord619

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ