bae5d489784f2198d337b911e6d2e648_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bae5d489784f2198d337b911e6d2e648_JaffaCakes118
Size

369KB
MD5

bae5d489784f2198d337b911e6d2e648
SHA1

ba2292c354f6e6ce8f8d4007af5cb59f2cec3045
SHA256

9b07630809b77721b1a8c7cb1dadec4ce27463d5e0cdc53864124ca6b35900c4
SHA512

c043643f61c7677bd9f7bda39f60d67c2e29bbe09745cb49050bdd10f3a28b68808f3c363e04362d00ffae8e7a917ac9ab93115aafda4b0eb36bae222771e562
SSDEEP

6144:v1lTBcB7yjUMmKf0eDAurrmooJ0DczOfImx0BYomiPwjR/sF2Rri:v1lTBi7yQMZDPZPDIeImxqAR/sF2Rri

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AlphaDemo.exe

Files

bae5d489784f2198d337b911e6d2e648_JaffaCakes118
.rar
AlphaDemo.exe
.exe windows:4 windows x86 arch:x86

dc7d5c4fd67f5a535c2b84b3df6fc300

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaStrI4
__vbaFreeVar
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
__vbaCopyBytes
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaOnError
__vbaObjSet
ord595
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaStrCmp
DllFunctionCall
__vbaFpUI1
_adj_fpatan
__vbaLateIdCallLd
EVENT_SINK_Release
__vbaNew
_CIsqrt
__vbaObjIs
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaI2Var
_CIlog
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaI4Var
__vbaStrToAnsi
__vbaVarDup
__vbaFpI4
_CIatan
ord618
__vbaCastObj
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeStr
__vbaFreeObj

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
AlphaDemo.gif
AlphaDemo.vbp
AlphaDemo.vbw
BasDIB.bas
.vbs
BasMain.bas
.vbs
BasOtherAPI.bas
BasPtr.bas
ClsDIB.cls
.vbs
FrmAlphaBlend.frm
.vbs
FrmAlphaDemo.frm
.vbs
FrmBrigDemo.frm
.vbs
FrmMain.frm
FrmMain.frx
a.bmp
b.bmp
下载说明.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

dc7d5c4fd67f5a535c2b84b3df6fc300

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 44KB - Virtual size: 42KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 44KB - Virtual size: 42KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 2KB