0785fd62b7c945e74536367967a47cd6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0785fd62b7c945e74536367967a47cd6_JaffaCakes118
Size

594KB
MD5

0785fd62b7c945e74536367967a47cd6
SHA1

facde8140ee45e79eb8832d2b3398528cc4e4ec3
SHA256

98058db0aa0165ecb8909337e63bdde1d31027157dcf60688b2cf9cdf6a0b858
SHA512

d0a9fbcc8b113c751daacbc16df9f714d35726f1e9236e8a87ab3bca8833a752ccdc3417484da2f1db01cb32e4537bf8295c204107512bc5006b44ce8a94191c
SSDEEP

6144:MqRq2WAXwbctjrmYZgULdJCKSu/XPaCyDYBUEoFo8TAwSqlGRY7n4GWuyBaABfp6:V3X9Tb0g9wFXRMG7Ln2fuxyGN

Score

1^/10

Malware Config

Signatures

Files

0785fd62b7c945e74536367967a47cd6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29125dbce57d2cbce3cd9da3da50408f

Code Sign

01
Certificate

Issuer

CN=Akeo Consulting (http://akeo.ie),O=Secunia,C=AU

Not Before

15/10/2018, 07:19

Not After

14/10/2023, 07:19

Subject

CN=Akeo Consulting (http://akeo.ie),O=Secunia,C=AU

d7:21:a9:94:2f:e4:84:bf:8f:ff:b0:b7:8b:96:b2:dc:4b:8a:b9:a9:6e:6d:8e:ad:b3:21:2b:7d:75:6d:6b:db
Signer

Actual PE Digest

d7:21:a9:94:2f:e4:84:bf:8f:ff:b0:b7:8b:96:b2:dc:4b:8a:b9:a9:6e:6d:8e:ad:b3:21:2b:7d:75:6d:6b:db

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarSub
_CIcos
_adj_fptan
__vbaVarMove
__vbaFreeVar
__vbaStrVarMove
__vbaLenBstr
ord589
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
ord517
_adj_fprem1
ord519
__vbaStrCat
ord660
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
_CIsin
ord525
__vbaChkstk
EVENT_SINK_AddRef
ord527
__vbaStrCmp
__vbaVarTstEq
__vbaObjVar
DllFunctionCall
__vbaCastObjVar
__vbaLbound
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
__vbaStrToUnicode
ord713
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaVarCat
ord537
_CIlog
ord646
__vbaErrorOverflow
__vbaNew2
ord571
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord685
ord100
__vbaVarTstNe
__vbaVarAdd
__vbaLateMemCall
__vbaStrToAnsi
__vbaVarDup
__vbaVarLateMemCallLd
__vbaFpI4
__vbaVarSetObjAddref
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr
__vbaI4ErrVar

Sections

.text
Size: 564KB - Virtual size: 562KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29125dbce57d2cbce3cd9da3da50408f

Code Sign

01Certificate

d7:21:a9:94:2f:e4:84:bf:8f:ff:b0:b7:8b:96:b2:dc:4b:8a:b9:a9:6e:6d:8e:ad:b3:21:2b:7d:75:6d:6b:dbSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 564KB - Virtual size: 562KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 20KB - Virtual size: 19KB

01
Certificate

d7:21:a9:94:2f:e4:84:bf:8f:ff:b0:b7:8b:96:b2:dc:4b:8a:b9:a9:6e:6d:8e:ad:b3:21:2b:7d:75:6d:6b:db
Signer

.text
Size: 564KB - Virtual size: 562KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 20KB - Virtual size: 19KB