f23b71b6d6fc30921ba62b4ed4d90f75_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f23b71b6d6fc30921ba62b4ed4d90f75_JaffaCakes118
Size

13KB
MD5

f23b71b6d6fc30921ba62b4ed4d90f75
SHA1

fde829fada7bfbf8dfefbf144e2036b4531a0db5
SHA256

6f480e986af517f6321076e2ecba909840d46c83de0fbfeba4fa7739ed6eea75
SHA512

90c1d55f2505189cf7be5e5b27380ff369ddc7a4282643d172a43815f28739eb44da76e6a3511b64908ffff5a29b59c64402fd3b231a1794ac687cdf00d60da0
SSDEEP

384:ved5I0kOKctHijtYwPDCLKYSYGiCLFEa6yg0JsX5m+Y:SI0UECjttDWCjiQYQsJm5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Trans.exe

Files

f23b71b6d6fc30921ba62b4ed4d90f75_JaffaCakes118
.rar
Trans.exe
.exe windows:4 windows x86 arch:x86

edd3bcb2763cbfde4da2c40a32f8192b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTstGt
__vbaVarSub
_CIcos
_adj_fptan
__vbaFreeVar
__vbaFreeVarList
__vbaEnd
_adj_fdiv_m64
_adj_fprem1
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaAryDestruct
__vbaForEachCollObj
__vbaOnError
ord595
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
__vbaVarTstLt
_CIsin
__vbaNextEachCollObj
__vbaChkstk
EVENT_SINK_AddRef
__vbaVarAbs
__vbaGenerateBoundsError
__vbaAryConstruct2
__vbaVarTstEq
DllFunctionCall
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaVarDiv
__vbaFPException
__vbaCheckType
_CIlog
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
_adj_fdivr_m32
__vbaR8Var
_adj_fdiv_r
ord100
__vbaI4Var
__vbaVarAdd
__vbaVarDup
__vbaLateMemCallLd
_CIatan
__vbaCastObj
_allmul
_CItan
_CIexp
__vbaFreeObj

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Trans.vbp
Transparent.bas
.vbs
frmTrans.frm
下载说明.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

edd3bcb2763cbfde4da2c40a32f8192b

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 28KB - Virtual size: 27KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 28KB - Virtual size: 27KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB