545919c78c7ac4363611f523993fb803_JaffaCakes118 | Triage

Sharing

General

Target

545919c78c7ac4363611f523993fb803_JaffaCakes118
Size

60KB
MD5

545919c78c7ac4363611f523993fb803
SHA1

9583e5ae5c4a1de7e48cc4a53d94565f8c729c18
SHA256

7f0f0b2d72ba059817b95118f77bb35c6307086f8835a95fce4ef4389d6bee69
SHA512

ddc7f53a2b57117d2b162e99054c7b51b997b283c14b904b53ed8074e69893b9b9132d5ed14b686be1c02daa0a0886b956ba9770d72fdfe44318dab2587a61e3
SSDEEP

768:jmBVOTxQPWWi6LdSLdNNLdOmcybXoyBS1y9Ty/vBHV:bT9WRAZRroyB8y9Ty/JHV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
545919c78c7ac4363611f523993fb803_JaffaCakes118

Files

545919c78c7ac4363611f523993fb803_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0d9cf3e544ea4b8ac9f478569883417c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord519
ord553
ord660
ord598
ord632
ord525
ord526
EVENT_SINK_AddRef
ord527
ord529
DllFunctionCall
ord563
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord606
ord608
ord717
ProcCallEngine
ord535
ord537
ord644
ord570
ord648
ord578
ord100
ord610
ord616
ord617
ord619
ord542
ord545
ord548
ord581

Sections

.Data
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ