JaffaCakes118_3c89e22401819c63ad01d4a9d278f917 | Triage

Sharing

General

Target

JaffaCakes118_3c89e22401819c63ad01d4a9d278f917
Size

128KB
MD5

3c89e22401819c63ad01d4a9d278f917
SHA1

3d6c23f2b8a22487be9a8c086418c3d37eddb9cd
SHA256

051c1c2d71e1eef094aa92b06c171497f2fa4bf3eb485dfdaaaa0a7848f9b763
SHA512

d6a2df2615db25161f07f579721cd6514e474e1e729dd717037b701a658c82090e3225c8fd4be8162b356d81e9421ac72ea6507ad6ad8a98869aedda35d22d0f
SSDEEP

1536:7eaUFFoHxIoreaa4e+6llt2y8OjQ6o6fAc/5vMgSJVbahVBnSk9OAU:7hRPreEe+6luy8Os6orc/JMMtSaOd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_3c89e22401819c63ad01d4a9d278f917

Files

JaffaCakes118_3c89e22401819c63ad01d4a9d278f917
.exe windows:4 windows x86 arch:x86

22bfec67c853694b6c3fc2fe6fad12cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord518
ord553
ord593
ord595
ord520
ord709
ord632
ord526
EVENT_SINK_AddRef
ord528
ord529
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord716
ProcCallEngine
ord576
ord577
ord100
ord610
ord612
ord613
ord617
ord619
ord542
ord547

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE