4300906f27b8ebc66800fb7905789af7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4300906f27b8ebc66800fb7905789af7_JaffaCakes118
Size

167KB
MD5

4300906f27b8ebc66800fb7905789af7
SHA1

293cf721c0f3d20a8410db75c3efcba554db8222
SHA256

8bc39f0f4f43b1dc3afc0b4f2623ff5a2faee4f445bd650f6b854d72500539d3
SHA512

5af56e5725ee6871547baa2473ff86e1b06aaab177c12df22b97ba6b2d3fe9573605d8a945a15093075301f4319590aa91143e2ea31de8b1aa8c028acd3b83a2
SSDEEP

3072:V+1V3mTI2IOGjJmgDpvP2s4rj3r+1V3mTI2IOGjJmgDpvP2s4rjM:V9TI2IOGdpDpB4Hr9TI2IOGdpDpB48

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4300906f27b8ebc66800fb7905789af7_JaffaCakes118

Files

4300906f27b8ebc66800fb7905789af7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2dce36d0e75aa234392d1b32c43d0f5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord667
ord595
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ