JaffaCakes118_8b2b3e734d448c4f765c9486e720ae80 | Triage

Sharing

General

Target

JaffaCakes118_8b2b3e734d448c4f765c9486e720ae80
Size

2.8MB
MD5

8b2b3e734d448c4f765c9486e720ae80
SHA1

58d4b6aeff37e40dfe73cdbc4b06007e2e1f5bfb
SHA256

251f12028df54d184f3e24944a1a7834eb2d9d333f7ab5e3c61b9bbddf2b2a2b
SHA512

1e4d9e92077ea2c46488b2950cf954c33c65589592df7ea5cf9ac1e63351a589b94d447a38502fd5354eb3d8a87e9449ea63dc59b1720f3c6f328ec5b4d815df
SSDEEP

3072:iGFKquYf0tG2YR2PWwzhh3dODlc6ru6/P9C2qMRXv7Wbx6Mf1rbVLsIQb2Oz4n0i:iu3mG5G0lc5GS14VgCI5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_8b2b3e734d448c4f765c9486e720ae80

Files

JaffaCakes118_8b2b3e734d448c4f765c9486e720ae80
.exe windows:4 windows x86 arch:x86

c265e63f775984d8fa25fd5ee530a5a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord516
ord628
ord665
ord595
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord608
ProcCallEngine
ord644
ord645
ord573
ord681
ord100
ord617
ord650

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ