8bbccbb4ab8ec5657646506def42ff7d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8bbccbb4ab8ec5657646506def42ff7d_JaffaCakes118
Size

1.3MB
MD5

8bbccbb4ab8ec5657646506def42ff7d
SHA1

3a28236d182fde4f9f559e830c87565585e13998
SHA256

88dd66a11575ecc08e25344bef8d44ed3d56b05283a28edb6e8594fadf90337e
SHA512

54e2b214753329420fdc4dac32b2b9f06362e0f4cdc800412497b27c4bac451505aebf5c5ace140352742640a7343451b41d5f943d414083f9846b0173d401a0
SSDEEP

24576:haYq6Yrxz1tn0P9BXBsM7Z+ol2HlaI/8LCuncS65wfQ6gXVI5/GoASk7:Gz1J0P9Nz8lShjb4FI5/GnSk7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/451511674/工程1.exe

Files

8bbccbb4ab8ec5657646506def42ff7d_JaffaCakes118
.rar
451511674/Form1.frm
.vbs
451511674/Form1.frx
451511674/MSSCCPRJ.SCC
451511674/下载说明.htm
.html .js polyglot
451511674/中华门.jpg
.jpg
451511674/二十四桥.jpg
.jpg
451511674/吴承恩故居.jpg
.jpg
451511674/吴敬梓塑像.jpg
.jpg
451511674/周庄.jpg
.jpg
451511674/周恩来总理纪念碑.jpg
.jpg
451511674/啬园.jpg
.jpg
451511674/回廊.jpg
.jpg
451511674/地图.jpg
.jpg
451511674/天目湖.gif
.gif
451511674/夫子庙大成殿.jpg
.jpg
451511674/工程1.exe
.exe windows:4 windows x86 arch:x86

b6a4c8d4a602d26c93b318524efa9be4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaEnd
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaObjSet
_adj_fdiv_m16i
_adj_fdivr_m16i
__vbaFpR4
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaStrCmp
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
_CIlog
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
_adj_fdivr_m32
_adj_fdiv_r
ord100
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
451511674/工程1.vbp
451511674/工程1.vbw
451511674/张謇.jpg
.jpg
451511674/恐龙园.gif
.gif
451511674/拙政园.gif
.gif
451511674/明远楼.jpg
.jpg
451511674/李香君塑像.jpg
.jpg
451511674/梅园.jpg
.jpg
451511674/汉兵马俑.jpg
.jpg
451511674/濠河.jpg
.jpg
451511674/狮子山楚王陵.jpg
.jpg
451511674/狼山.jpg
.jpg
451511674/王谢故居.jpg
.jpg
451511674/留园.gif
.gif
451511674/瘦西湖.jpg
.jpg
451511674/白鹭洲.jpg
.jpg
451511674/花果山.jpg
.jpg
451511674/锡惠公园.gif
.gif

Sharing

General

Malware Config

Signatures

Files

b6a4c8d4a602d26c93b318524efa9be4

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 104KB - Virtual size: 101KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 104KB - Virtual size: 101KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB