2d16472574e579a2c7a1460f8503c648_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d16472574e579a2c7a1460f8503c648_JaffaCakes118
Size

24KB
MD5

2d16472574e579a2c7a1460f8503c648
SHA1

af8d82ae566eedf009f9f14c2d8326a0a6432aff
SHA256

733a95bb599b23efcedbaa01f666d78bb459888c94f1a26d2d5768f268228e2d
SHA512

30db51ba728a2e2adb0c1f7f4275677ffa39fd221be3c667536506c41f82c8acbd170f857b2d39a82a0d5617b7ae4ae7590a4fde9b2ee603324bd2a8534bc7d4
SSDEEP

192:RvW8Z+qfsnscksZ9QRdJEubnalqHjgku7mXV+e1aOKpNO:RF0Lks0EubndEP7mke1aOKHO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d16472574e579a2c7a1460f8503c648_JaffaCakes118

Files

2d16472574e579a2c7a1460f8503c648_JaffaCakes118
.exe windows:4 windows x86 arch:x86

02e9cdc36eabd49b3a83e2e27a472689

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
MethCallEngine
ord660
ord595
ord526
EVENT_SINK_AddRef
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord681
ord100

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ