4276d9e0908a55922c8efe03509ba0b6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4276d9e0908a55922c8efe03509ba0b6_JaffaCakes118
Size

76KB
MD5

4276d9e0908a55922c8efe03509ba0b6
SHA1

3f982a2f0efcd614b56def402206c5e7a6cbca0b
SHA256

b5ac9f4de1fe41ddb968aff14322f840348ac87f7db4e41d8aa4732a7ce365b4
SHA512

370c7d6c42633870568a6d26dee120b2cb48b10b3bd632d4d906012b9eeb44e0f5a9e2866f43c02b266eaa8c39d5d6b012ba45895a00e3080b6423e32c9e1fce
SSDEEP

768:1fw5tXkO9nF8HmzGkCeWlDGRayxtO4lYlDNzPejzoi1GsdlKVqljKG3iD4sc3tw5:1QJFjQGRa9lDNcEUDQMjfnsmtnMB+cmI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4276d9e0908a55922c8efe03509ba0b6_JaffaCakes118

Files

4276d9e0908a55922c8efe03509ba0b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e39d037acde6b096f84bdccfceac0cd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord516
ord666
ord595
ord631
ord526
DllFunctionCall
ord601
__vbaExceptHandler
ord711
ord606
ord717
ProcCallEngine
ord644
ord537
ord578
ord100

Sections

.text
Size: 72KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ