45a6e7785db3dd861b2b04ec3c993665_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45a6e7785db3dd861b2b04ec3c993665_JaffaCakes118
Size

30KB
MD5

45a6e7785db3dd861b2b04ec3c993665
SHA1

ba8db2e4804ebaf66f15bc274eeed89d6fa4e46d
SHA256

a1e5240b6c60842c66f80a01df511faef507604620c349798c2acc63649916a8
SHA512

9d2df8395fe89ffe8743f28be64dd2205ce5df0d0ffa6ac296827d406826ec16527d904edb63b9556847b4969aebebe2302facd8cc5aa999729e0c2351e68d13
SSDEEP

384:E3Jy3F9apJZcY5QjXGrnad31+YWYOIEDKHNn9JAHYleo4JYzFNVnQTf1moNre0:E3kVE1F6NvGYlepJAVnEUUrv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45a6e7785db3dd861b2b04ec3c993665_JaffaCakes118

Files

45a6e7785db3dd861b2b04ec3c993665_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc17839040d50182e7b0acc4e49c5324

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord631
ord526
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord607
ord717
ProcCallEngine
ord537
ord644
ord570
ord573
ord681
ord685
ord100
ord618
ord581

Sections

gel�
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

dengesiz
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sector
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

canku�
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE