4a1a1f8e8fe3d41a91890515512789a0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4a1a1f8e8fe3d41a91890515512789a0_JaffaCakes118
Size

1.0MB
MD5

4a1a1f8e8fe3d41a91890515512789a0
SHA1

4a2b9e94b2247d3731f51a5dc006fe75165976e1
SHA256

028c34d80b3d4fde07269c0a992f63bd1a9c2c94d4611a85074619b9c2c7730f
SHA512

4c5f995ec33f64fa5038d0d66bb88301c00cf661af45025223777f83bd27edf8c92f9161e9eaab9edb2fcf19e98027578be0844292c160a85a471eb0fc61f76a
SSDEEP

24576:jxXW/SC3oE1d2K9QKa90ZvpECIPCP07X2ppsJy/TFprDhAhj:9G/SC3L5daGZ+CuhX2zsJyrF0F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SEXIE/Install.exe

Files

4a1a1f8e8fe3d41a91890515512789a0_JaffaCakes118
.rar
SEXIE/Bookmark/Bookmark.ini
SEXIE/Bookmark/DOCK.png
.png
SEXIE/Bookmark/INTERNET.png
.png
SEXIE/Bookmark/ITOOLS.png
.png
SEXIE/Bookmark/NETWORK.png
.png
SEXIE/Bookmark/NICEDOCK.png
.png
SEXIE/Bookmark/SPHERE.png
.png
SEXIE/Bookmark/Thumbs.db
SEXIE/Custom Clock and Date/Alt Date and Time.ini
SEXIE/Extra Drives/DriveD/DriveD.ini
SEXIE/Extra Drives/DriveD/DriveD.png
.png
SEXIE/Extra Drives/DriveE/DriveE.ini
SEXIE/Extra Drives/DriveE/DriveE.png
.png
SEXIE/Extra Drives/DriveF/DriveF.ini
SEXIE/Extra Drives/DriveF/DriveF.png
.png
SEXIE/Extra Drives/DriveG/DriveG.ini
SEXIE/Extra Drives/DriveG/DriveG.png
.png
SEXIE/Extra Drives/DriveH/DriveH.ini
SEXIE/Extra Drives/DriveH/DriveH.png
.png
SEXIE/Hard Drive/MainStorage.ini
SEXIE/Hard Drive/MainStorage.png
.png
SEXIE/Install.exe
.exe windows:4 windows x86 arch:x86

ed6bdc3acd777a45f48bc03d4c39578b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaStrI2
_CIcos
_adj_fptan
__vbaStrI4
__vbaFreeVar
__vbaLenBstr
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
_adj_fprem1
__vbaStrCat
__vbaSetSystemError
_adj_fdiv_m32
__vbaAryDestruct
__vbaOnError
_adj_fdiv_m16i
_adj_fdivr_m16i
ord598
__vbaCyStr
_CIsin
__vbaChkstk
__vbaGenerateBoundsError
__vbaStrCmp
__vbaAryConstruct2
DllFunctionCall
__vbaFpUI1
_adj_fpatan
__vbaUI1I2
_CIsqrt
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaI2Str
__vbaFPException
ord644
_CIlog
__vbaErrorOverflow
__vbaCyMulI2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaI4Str
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaFpCy
__vbaStrToAnsi
__vbaFpI2
__vbaFpI4
_CIatan
__vbaStrMove
ord650
_allmul
_CItan
_CIexp
__vbaFreeStr
__vbaFreeObj

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 468KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SEXIE/Network-Address/Address.ini
SEXIE/Network/Network.ini
SEXIE/Now Playing/Player.ini
SEXIE/Now Playing/ProgressTray.png
.png
SEXIE/Processes/Processes.ini
SEXIE/Wallpaper.jpg
.jpg
SEXIE/_Taskbar/Taskbar-with-Panel.ini
SEXIE/_Taskbar/Taskbar.ini
SEXIE/battery/background.png
.png
SEXIE/battery/battery.ini
SEXIE/cpu and ram/background.png
.png
SEXIE/cpu and ram/cpu and ram.ini
SEXIE/drive/background.png
.png
SEXIE/drive/drive.ini
SEXIE/time/background.png
.png
SEXIE/time/time.ini
SEXIE/up and dl/background.png
.png
SEXIE/up and dl/up and dl.ini

Sharing

General

Malware Config

Signatures

Files

ed6bdc3acd777a45f48bc03d4c39578b

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 72KB - Virtual size: 70KB

.data Size: 468KB - Virtual size: 464KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 72KB - Virtual size: 70KB

.data
Size: 468KB - Virtual size: 464KB

.rsrc
Size: 16KB - Virtual size: 13KB