3fc7f4290509e782ec91393ab54524fb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fc7f4290509e782ec91393ab54524fb_JaffaCakes118
Size

308KB
MD5

3fc7f4290509e782ec91393ab54524fb
SHA1

cce380a5201115b199435d496b1de1f663aac775
SHA256

78f202404140f59f8623db3cadb88673599c5f761eeb009d7e0679d9ffa4b311
SHA512

73bbfe3c12c67c676ec65edbe8924126a8e9d412709299854de8c29006e041e7889bca3a139d96b31a2c67e10f2d91c026efd46f4b4682971bae158ca8cda791
SSDEEP

3072:LX0e1FB/DpKjCLHAm5UAK9crm/kc1tb11:AAKmc1Rb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fc7f4290509e782ec91393ab54524fb_JaffaCakes118

Files

3fc7f4290509e782ec91393ab54524fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2afdd4f403a3ad64c6c4adbe1d38a60b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord665
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord100

Sections

.text
Size: 300KB - Virtual size: 298KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ