JaffaCakes118_5bdf7869bb1d81847397d9b1704f911a | Triage

Sharing

General

Target

JaffaCakes118_5bdf7869bb1d81847397d9b1704f911a
Size

155KB
MD5

5bdf7869bb1d81847397d9b1704f911a
SHA1

6cbbc2ff7716d4a27243448f943a4c3a49346f67
SHA256

d677cf7723cc282da7987a3003ea04d369a651dc83184b9e523bf3ce9bc047cf
SHA512

bf4d207c22ac8715bd46e9bedfa153d4c1ee70a32bfa386e3ce21f524063e149d49616a0617785d2b4434eded573bbc6793e541f24d7e55f810fd3841a5916b0
SSDEEP

3072:mDb4oxo8S/clMGrsITQ+JSxNQheWZx64iXv1T04IcLWveQe9DZ+IRmQV/:c47mrzTQ9DQECXif1o12VDZX9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_5bdf7869bb1d81847397d9b1704f911a

Files

JaffaCakes118_5bdf7869bb1d81847397d9b1704f911a
.exe windows:4 windows x86 arch:x86

55330fa89c337dd9653c6b000726270e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
MethCallEngine
ord516
ord660
ord557
ord665
ord666
ord595
ord520
ord632
ord526
EVENT_SINK_AddRef
ord528
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord607
ord530
ord570
ord100
ord610
ord613
ord617
ord546
ord581

Sections

.text
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ