bae223337ea7b01dba25b5161b0113b3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bae223337ea7b01dba25b5161b0113b3_JaffaCakes118
Size

263KB
MD5

bae223337ea7b01dba25b5161b0113b3
SHA1

ecf11aea3d82ac5374abdbfb84b11447fd017e84
SHA256

4db8b425ff9ec42e64507f30c47461a1260aa55ad78aedd48e8dec142f66f398
SHA512

9f883a02aa21b26eab44fcab3463803aae77fcfc770accb4911ca66360312df49eae4457f4214af4af7270295df35d6a98d1c70b91585265b45c7a5bc5a8596f
SSDEEP

6144:hHYe7Z6Wn94gBt5LsmFnw1zCBxqJubaLmZU0r8tTNKLA53NED7Ze:9YeNx4gBtR5wgbqJtmC0y2A53NED7Ze

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/viralt/ViralDownloader.exe

Files

bae223337ea7b01dba25b5161b0113b3_JaffaCakes118
.zip
viralt/ViralDownloader.exe
.exe windows:4 windows x86 arch:x86

9e85d62005aec8b0daa6233900f90f34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord582
ord583
ord690
ord584
ord691
ord585
ord586
ord587
ord588
ord589
ord696
ord697
MethCallEngine
ord512
ord516
ord517
ord518
ord519
ord628
ord552
ord553
ord661
ord662
ord667
ord669
ord592
ord593
ord300
ord594
ord301
ord595
ord596
ord303
ord597
ord703
ord598
ord305
ord704
ord599
ord306
ord307
ord521
ord706
ord309
ord708
ord523
ord631
ord709
ord525
EVENT_SINK_AddRef
ord527
ord529
ord560
ord561
DllFunctionCall
ord563
ord566
ord568
EVENT_SINK_Release
ord600
ord601
ord311
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord710
ord711
ord313
ord712
ord314
ord713
ord606
ord315
ord714
ord316
ord715
ord530
ord609
ord716
ord531
ord532
ord717
ord319
ord533
ProcCallEngine
ord535
ord537
ord644
ord538
ord645
ord539
ord646
ord570
ord648
ord571
ord572
ord681
ord576
ord577
ord578
ord685
ord100
ord579
ord689
ord611
ord320
ord321
ord614
ord616
ord540
ord618
ord541
ord542
ord650
ord543
ord544
ord545
ord546
ord547
ord580
ord581

Sections

.text
Size: 612KB - Virtual size: 611KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
viralt/vd.ini
viralt/͂߂ɕKǂ݉.txt
viralt/G[N炱.txt

Sharing

General

Malware Config

Signatures

Files

9e85d62005aec8b0daa6233900f90f34

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 612KB - Virtual size: 611KB

.data Size: - Virtual size: 15KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 612KB - Virtual size: 611KB

.data
Size: - Virtual size: 15KB

.rsrc
Size: 28KB - Virtual size: 25KB