3bf3a575b9ce81486786f61eccb2ab3b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bf3a575b9ce81486786f61eccb2ab3b_JaffaCakes118
Size

748KB
MD5

3bf3a575b9ce81486786f61eccb2ab3b
SHA1

58f1480186c6a09fc79eb28427ebecd6fd91dd59
SHA256

b2b412d5a7dae5d59a6a0f3a2aa6c1fdab4750c4d2168bf1b0da6453ded72d9c
SHA512

77366eba9d541eb4b9e0978dd514647b8e485f357e1b1c343a02b3bff79f56f0ed9959480f5802a5f339f2abb4f249cbae123be6f1fdb2f63d196281e7332b6e
SSDEEP

6144:A0cX6zR8BjyTWF2uDYYql0fWXsSxSPkljvEZ4ILeSEqjyJUPYbvyVS:Jc2R8J6y3ql0fWXtSzLejqj4b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bf3a575b9ce81486786f61eccb2ab3b_JaffaCakes118

Files

3bf3a575b9ce81486786f61eccb2ab3b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

524b4055ab5c4b577b1e9e2e277edbfd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord626
ord300
ord595
ord598
ord599
ord306
ord520
ord632
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ord716
ProcCallEngine
ord535
ord645
ord571
ord100
ord616
ord617
ord619

Sections

.text
Size: 616KB - Virtual size: 615KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ