dc8e574d6550d7beaa3d35ef149d8709_JaffaCakes118

General

Target

dc8e574d6550d7beaa3d35ef149d8709_JaffaCakes118
Size

50KB
MD5

dc8e574d6550d7beaa3d35ef149d8709
SHA1

265002e227b6ca936fce9a16c515e7c48876292a
SHA256

78ba9e042063bf1bdf0209cd03631fd42d0e67c5c8985cc4db03029716bed7c8
SHA512

f9881f7bcce51cd2e24ab2d3c45d889346fc1716d21e85d33b62efebd3ba177e1c7bb10142c9d307a0c955d3b04d4d17ca11d3f88bc4682a71d00ef92412f2ce
SSDEEP

768:R4WMKm6c81g/R/r6J1z2lGFUhot3ZCTYjHYA9wkoj6rMZNE4mY1lmG2G3dRVgg:tMKm6c8ErY1GKZCkjHYJNj4MYuSGfV1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Boleto.exe

Files

dc8e574d6550d7beaa3d35ef149d8709_JaffaCakes118
.zip
Boleto.exe
.exe windows:4 windows x86 arch:x86

26b79b75f942055522f61c5a8692d4c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaFreeVar
__vbaStrVarMove
__vbaLenBstr
__vbaFreeVarList
_adj_fdiv_m64
ord516
_adj_fprem1
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
__vbaOnError
_adj_fdiv_m16i
_adj_fdivr_m16i
ord520
__vbaBoolVarNull
_CIsin
ord631
__vbaChkstk
ord526
EVENT_SINK_AddRef
__vbaStrCmp
__vbaVarTstEq
__vbaI2I4
DllFunctionCall
_adj_fpatan
EVENT_SINK_Release
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaStrVarVal
__vbaVarCat
ord537
_CIlog
__vbaErrorOverflow
__vbaInStr
_adj_fdiv_m32i
_adj_fdivr_m32i
ord573
__vbaStrCopy
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaI4Var
__vbaVarAdd
__vbaStrToAnsi
__vbaFpI2
__vbaVarMod
__vbaVarCopy
__vbaFpI4
ord617
_CIatan
__vbaStrMove
__vbaStrVarCopy
_allmul
_CItan
_CIexp
__vbaMidStmtBstr
__vbaFreeStr
ord581

Sections

.text
Size: 300KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26b79b75f942055522f61c5a8692d4c3

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 300KB - Virtual size: 296KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 292KB - Virtual size: 289KB

.text
Size: 300KB - Virtual size: 296KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 292KB - Virtual size: 289KB