411163ec2af3ea9e68ad0798d3c3d510_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

411163ec2af3ea9e68ad0798d3c3d510_JaffaCakes118
Size

946KB
MD5

411163ec2af3ea9e68ad0798d3c3d510
SHA1

2b210fef76a95519f041bacddd9bfc0ab74a36f1
SHA256

b8f2f1cfee4dc1c17f238c5f7c6f18719cb71442ac522c1df97b09565cfe8966
SHA512

76c13f45843079e9cd2b85f8619aa30573d7936907ee7e2e4963d51749e207e7a5786dc605016bf342236ed089fa04089fbe1170ffb48621ff4de7c0ace79299
SSDEEP

12288:N28N2s0sA1t5goYRsOSnK/TFx/5DFp/xK:N2wqt5MRsOEKrz/5DH/xK

Score

1^/10

Malware Config

Signatures

Files

411163ec2af3ea9e68ad0798d3c3d510_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d8c06d606961e1c21f9a1b8d31223849

Code Sign

01
Certificate

Issuer

CN=Traktor x264 are registered trademarks Installation Customizer,O=Traktor x264 are registered trademarks International,C=AL

Not Before

04-11-2018 08:22

Not After

04-11-2019 08:22

Subject

CN=Traktor x264 are registered trademarks Installation Customizer,O=Traktor x264 are registered trademarks International,C=AL

6a:da:ec:7c:5b:66:a0:ea:46:89:9b:a0:9f:f1:c3:0d:57:6f:a0:7f
Signer

Actual PE Digest

6a:da:ec:7c:5b:66:a0:ea:46:89:9b:a0:9f:f1:c3:0d:57:6f:a0:7f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTstGt
__vbaVarSub
ord582
_CIcos
_adj_fptan
__vbaVarMove
__vbaFreeVar
__vbaFreeVarList
_adj_fdiv_m64
ord512
ord516
_adj_fprem1
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaAryDestruct
__vbaVarForInit
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaFPFix
__vbaFpR8
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaAryConstruct2
__vbaVarTstEq
DllFunctionCall
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaFPException
_CIlog
__vbaErrorOverflow
__vbaFileOpen
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
_adj_fdivr_m32
__vbaR8Var
_adj_fdiv_r
ord100
__vbaI4Var
__vbaStrToAnsi
__vbaVarDup
__vbaFpI4
_CIatan
ord619
_allmul
_CItan
__vbaVarForNext
_CIexp
__vbaFreeStr
__vbaFreeObj

Sections

.text
Size: 920KB - Virtual size: 917KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8c06d606961e1c21f9a1b8d31223849

Code Sign

01Certificate

6a:da:ec:7c:5b:66:a0:ea:46:89:9b:a0:9f:f1:c3:0d:57:6f:a0:7fSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 920KB - Virtual size: 917KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 16KB - Virtual size: 15KB

01
Certificate

6a:da:ec:7c:5b:66:a0:ea:46:89:9b:a0:9f:f1:c3:0d:57:6f:a0:7f
Signer

.text
Size: 920KB - Virtual size: 917KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 16KB - Virtual size: 15KB