e136c86c932d67909fafd3592fe5cd76_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e136c86c932d67909fafd3592fe5cd76_JaffaCakes118
Size

1.1MB
MD5

e136c86c932d67909fafd3592fe5cd76
SHA1

50a8726177ee1542494f0623b8fe90c103784f56
SHA256

7a68f34808dc0847483900069b1ce60b998f5a86c7424ba0fc6a458a20989547
SHA512

a9c785889511b6f3b1da268e93d702dc3e2e52ff21779fb1cae067101a236dbcb2a6d99a537fc79ae2365aba2c8a31c7682c9e44bd04bd83a2a18ff43a8f16b9
SSDEEP

12288:CYMJM8yY9W+1KrtJ+1nW+lp/COrPs6BE3Q+ysxzG3Z2zkPaCxk:C1yp+Y/+UqxClgNsxqZOkle

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e136c86c932d67909fafd3592fe5cd76_JaffaCakes118

Files

e136c86c932d67909fafd3592fe5cd76_JaffaCakes118
.exe windows:4 windows x86 arch:x86

05b87ee9ec172c1781f90c6cf0341e7f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord593
ord598
ord631
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
ord670
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord608
ord717
ProcCallEngine
ord644
ord570
ord648
ord681
ord100

Sections

.GCHCFGH
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JKHLBJL
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SDGFDC
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.GK VGHK
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MaThiO
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.KliMro
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pebundle
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pebundle
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MaThiO
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MaThiO
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

05b87ee9ec172c1781f90c6cf0341e7f

Headers

File Characteristics

Imports

msvbvm60

Sections

.GCHCFGH Size: 88KB - Virtual size: 88KB

.JKHLBJL Size: - Virtual size: 40KB

.SDGFDC Size: 164KB - Virtual size: 164KB

.GK VGHK Size: 162KB - Virtual size: 164KB

.udata Size: - Virtual size: 4KB

.MaThiO Size: 4KB - Virtual size: 4KB

.KliMro Size: 4KB - Virtual size: 4KB

pebundle Size: 164KB - Virtual size: 164KB

pebundle Size: 8KB - Virtual size: 8KB

.MaThiO Size: 4KB - Virtual size: 4KB

.MaThiO Size: 4KB - Virtual size: 4KB

.GCHCFGH
Size: 88KB - Virtual size: 88KB

.JKHLBJL
Size: - Virtual size: 40KB

.SDGFDC
Size: 164KB - Virtual size: 164KB

.GK VGHK
Size: 162KB - Virtual size: 164KB

.udata
Size: - Virtual size: 4KB

.MaThiO
Size: 4KB - Virtual size: 4KB

.KliMro
Size: 4KB - Virtual size: 4KB

pebundle
Size: 164KB - Virtual size: 164KB

pebundle
Size: 8KB - Virtual size: 8KB

.MaThiO
Size: 4KB - Virtual size: 4KB

.MaThiO
Size: 4KB - Virtual size: 4KB