2bccd6df77517886eb0f02b4ee467e05_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bccd6df77517886eb0f02b4ee467e05_JaffaCakes118
Size

1.6MB
MD5

2bccd6df77517886eb0f02b4ee467e05
SHA1

d92d3e47edaf4ea1bf5c5499f775696175a222e3
SHA256

e5e9546ecb9d08f5a537dca44329296ff5ec632ba9d5625b5ddae71176943e07
SHA512

1da6aa23865c0fe691663a0e1c9aa1c104f41be76030bf931108d00b64699746638645653e56cab5e26d7e4265f95e3274483c83d3386d24dfd6e409b00bf15e
SSDEEP

49152:F00DxVn5AxlCBi29GW6dspHP2jILIyyVj0Y6MArQ:F0APgCBtsWuybknoUArQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bccd6df77517886eb0f02b4ee467e05_JaffaCakes118

Files

2bccd6df77517886eb0f02b4ee467e05_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd1352569303e3b273bd3993f9bd7d7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord666
ord526
EVENT_SINK_AddRef
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord570
ord100
ord616

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ