d04582670a1b78c0a90a922f88f79dcb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d04582670a1b78c0a90a922f88f79dcb_JaffaCakes118
Size

176KB
MD5

d04582670a1b78c0a90a922f88f79dcb
SHA1

55b7c6388c291027e17110de761915df77a68502
SHA256

6919f8078f08f33a84dda37dfc5cc2505f42d3fb1cd5c04527dbcc987af5018d
SHA512

0b80814a9a98216c716afafcaebccd7a0b400692535e48e01dcc32b12826121ff1cca3c6d5573a875f2ff6570c1271a9c91718f2bf1af3cbeabb3c89aa472ed8
SSDEEP

1536:C5yikQFFscM7tSSrPEz4V2bXX8LkdJMFKq5gotfz3rJe/UD:MHjK77t/rPEz4KXBJ/q5got7/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d04582670a1b78c0a90a922f88f79dcb_JaffaCakes118

Files

d04582670a1b78c0a90a922f88f79dcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e2f51abaa2eb6c1b372c0c0df6a4dfbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvbvm60

MethCallEngine
rtcAnsiValueBstr
rtcMidCharBstr
rtcMidCharVar
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
rtcReplace
rtcStrReverse
rtcStringVar
rtcStrConvVar2
ProcCallEngine
VarPtr
rtcBstrFromAnsi
rtcFileLength
rtcHexVarFromVar
ThunRTMain
rtcRightCharVar
rtcR8ValFromBstr

Sections

0
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.C3$%P
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.A#�;5
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.n+�e�
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.�$$$Y
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2f51abaa2eb6c1b372c0c0df6a4dfbd

Headers

File Characteristics

Imports

msvbvm60

Sections

0 Size: 20KB - Virtual size: 20KB

1 Size: 8KB - Virtual size: 8KB

2 Size: 4KB - Virtual size: 4KB

3 Size: 4KB - Virtual size: 4KB

4 Size: 4KB - Virtual size: 4KB

5 Size: 4KB - Virtual size: 4KB

6 Size: 72KB - Virtual size: 72KB

7 Size: 8KB - Virtual size: 8KB

8 Size: 32KB - Virtual size: 32KB

.C3$%P Size: 4KB - Virtual size: 4KB

.A#�;5 Size: 4KB - Virtual size: 4KB

.n+�e� Size: 4KB - Virtual size: 4KB

.�$$$Y Size: 4KB - Virtual size: 4KB

0
Size: 20KB - Virtual size: 20KB

1
Size: 8KB - Virtual size: 8KB

2
Size: 4KB - Virtual size: 4KB

3
Size: 4KB - Virtual size: 4KB

4
Size: 4KB - Virtual size: 4KB

5
Size: 4KB - Virtual size: 4KB

6
Size: 72KB - Virtual size: 72KB

7
Size: 8KB - Virtual size: 8KB

8
Size: 32KB - Virtual size: 32KB

.C3$%P
Size: 4KB - Virtual size: 4KB

.A#�;5
Size: 4KB - Virtual size: 4KB

.n+�e�
Size: 4KB - Virtual size: 4KB

.�$$$Y
Size: 4KB - Virtual size: 4KB