ec1a2d23f6ec819a7632b9d2d6c91362_JaffaCakes118 | Triage

Sharing

General

Target

ec1a2d23f6ec819a7632b9d2d6c91362_JaffaCakes118
Size

365KB
MD5

ec1a2d23f6ec819a7632b9d2d6c91362
SHA1

905e747b6d952ee409204539712acd38922aa3d3
SHA256

df33462acb9302bae07bb86056d1c577488a77263a09fd1935d2550891c32064
SHA512

d0ab5310273cc46a82eee0ca9dd6472ba641f041a81e9a160a4d2e796bd3584604d387cc73fb6bb8b6fc211ed7600735a0e71781b0c9643e5fdba634c2c936d8
SSDEEP

6144:xX2GVkaeqSnWxzYDIK/CvtSXQfM/c2BZu7SBJad21waqCkVKXU0F+R38HbqiByqL:xzkzHsK/AsQfM/lXEOad2elKX+tybqpK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec1a2d23f6ec819a7632b9d2d6c91362_JaffaCakes118

Files

ec1a2d23f6ec819a7632b9d2d6c91362_JaffaCakes118
.exe windows:4 windows x86 arch:x86

17cd0f13bbd3151581a46419b98f2a55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord518
ord626
ord666
ord598
ord632
ord526
DllFunctionCall
ord563
ord670
ord601
__vbaExceptHandler
ord711
ord712
ord606
ord607
ord608
ord717
ProcCallEngine
ord644
ord537
ord570
ord100
ord616
ord617

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ