6203356180b8c406ab48b919369475e5_JaffaCakes118

General

Target

6203356180b8c406ab48b919369475e5_JaffaCakes118
Size

37KB
MD5

6203356180b8c406ab48b919369475e5
SHA1

f0488a5d5be1e9bb3e838cd8684cb4465293e37e
SHA256

ad7a092fdf397b41f15d90b787f11a53aa527f966e8b868433d3b80586655708
SHA512

4c6c7773144a28e6fc8a85e498feb7cea0710dbae13230ef83fd2a20430ef85c532319d8d0c9aab732af8b3e89e659b3688610d7d66db8be679a861df0a8eba6
SSDEEP

768:nUFHRkDFCC894R1qy7JoFFnXyrR64Fm0LIYHOPq/:nUFHRskC8OR0y7JrR64FxcPq/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/boleto_leetz.com

Files

6203356180b8c406ab48b919369475e5_JaffaCakes118
.zip
boleto_leetz.com
.exe windows:4 windows x86 arch:x86

4d32e68974fd68770f0b6036f12ebb27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaFreeVar
__vbaStrVarMove
__vbaLenBstr
__vbaFreeVarList
_adj_fdiv_m64
ord516
_adj_fprem1
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
__vbaOnError
_adj_fdiv_m16i
_adj_fdivr_m16i
ord520
__vbaBoolVarNull
_CIsin
ord631
__vbaChkstk
ord526
EVENT_SINK_AddRef
__vbaStrCmp
__vbaVarTstEq
__vbaI2I4
DllFunctionCall
_adj_fpatan
EVENT_SINK_Release
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaStrVarVal
__vbaVarCat
ord537
_CIlog
__vbaErrorOverflow
__vbaInStr
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
ord573
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaI4Var
__vbaVarAdd
__vbaStrToAnsi
__vbaFpI2
__vbaVarMod
__vbaVarCopy
__vbaFpI4
ord617
_CIatan
__vbaStrMove
__vbaStrVarCopy
_allmul
_CItan
_CIexp
__vbaMidStmtBstr
__vbaFreeStr
ord581

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d32e68974fd68770f0b6036f12ebb27

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 92KB - Virtual size: 89KB

.data Size: 4KB - Virtual size: 141KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 92KB - Virtual size: 89KB

.data
Size: 4KB - Virtual size: 141KB

.rsrc
Size: 28KB - Virtual size: 25KB