25b25a5b1abacc8f576190a267d039bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25b25a5b1abacc8f576190a267d039bd_JaffaCakes118
Size

208KB
MD5

25b25a5b1abacc8f576190a267d039bd
SHA1

049d28c1d72b3b971f1f83c7b3ba55d0cf72b1bd
SHA256

1267acc8d6b1b537a5b3424d897b2a1a9cae27186e3f35ff76a5f3e52e4b9f73
SHA512

358f91711e2b5d5dfff5b1f3c0522d3ffc88359c84a7b443551e708adb38a5a221bb476321406df9a9cfa804be650a0e037acd94a65682a4df13827103fa26cc
SSDEEP

3072:L6uPXutXuV/yNJmEEbDbpmB/RRSTEXu/4Ob2nK+wVI1Uuir/134ZNeRc:5uxgJmB/PSia4Ob2K+KOUuir/p4ZNeR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25b25a5b1abacc8f576190a267d039bd_JaffaCakes118

Files

25b25a5b1abacc8f576190a267d039bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

33807876ce3a91e97e1391a13e029e07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetPixelFormat
ChoosePixelFormat
SwapBuffers

opengl32

wglMakeCurrent
glHint
glLoadIdentity
glBindTexture
glTexParameteri
glShadeModel
glGenTextures
glVertex3f
glTranslatef
glClearDepth
wglCreateContext
glTexImage2D
glTexCoord2f
glEnd
glClearColor
glColor4ub
glEnable
glRotatef
wglDeleteContext
glViewport
glBegin
glBlendFunc
glClear
glMatrixMode

glu32

gluPerspective

msvbvm60

ord582
__vbaVarTstGt
__vbaVarSub
ord583
__vbaStrI2
_CIcos
_adj_fptan
ord585
__vbaStrI4
__vbaVarMove
__vbaAryMove
__vbaFreeVar
ord588
__vbaStrVarMove
__vbaLenBstr
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
ord516
_adj_fprem1
ord518
__vbaRecAnsiToUni
__vbaI2Abs
__vbaCopyBytes
__vbaResume
__vbaStrCat
__vbaForEachCollAd
ord660
__vbaLsetFixstr
__vbaVarTextTstEq
__vbaSetSystemError
__vbaRecDestruct
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaAryDestruct
ord593
__vbaVarForInit
__vbaExitProc
__vbaI4Abs
ord594
ord595
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaFpR4
__vbaStrFixstr
__vbaBoolVar
ord520
__vbaFPFix
__vbaVarTstLt
__vbaBoolVarNull
__vbaFpR8
_CIsin
__vbaErase
ord709
ord525
ord632
__vbaChkstk
__vbaI2Cy
__vbaCyVar
__vbaFileClose
EVENT_SINK_AddRef
ord528
__vbaGenerateBoundsError
__vbaGet3
__vbaStrCmp
__vbaAryConstruct2
__vbaVarTstEq
__vbaI2I4
ord561
DllFunctionCall
__vbaFpUI1
__vbaLbound
__vbaRedimPreserve
_adj_fpatan
__vbaR4Var
__vbaLateIdCallLd
__vbaR8Cy
__vbaUI1Cy
__vbaRedim
__vbaStrR8
__vbaRecUniToAnsi
EVENT_SINK_Release
__vbaNew
__vbaUI1I2
_CIsqrt
__vbaObjIs
EVENT_SINK_QueryInterface
__vbaStrUI1
__vbaVarMul
__vbaUI1I4
__vbaExceptHandler
__vbaStrToUnicode
_adj_fprem
_adj_fdivr_m64
__vbaVarDiv
ord607
ord714
ord608
__vbaFPException
__vbaInStrVar
__vbaUbound
__vbaGetOwner3
__vbaStrVarVal
__vbaR4ForNextCheck
__vbaVarCat
ord535
__vbaI2Var
ord537
_CIlog
__vbaErrorOverflow
__vbaFileOpen
ord648
__vbaInStr
__vbaR8Str
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaI4Str
__vbaFreeStrList
_adj_fdivr_m32
__vbaPowerR8
__vbaR8Var
_adj_fdiv_r
ord685
ord100
__vbaVarTstNe
__vbaI4Var
__vbaVarAdd
__vbaAryLock
ord611
__vbaStrToAnsi
__vbaVarDup
ord614
__vbaFpI2
__vbaVarCopy
ord616
__vbaFpI4
__vbaR8IntI2
ord617
__vbaRecDestructAnsi
__vbaLateMemCallLd
_CIatan
__vbaAryCopy
__vbaStrMove
__vbaCastObj
ord619
ord650
_allmul
__vbaLateIdSt
_CItan
__vbaNextEachCollAd
__vbaFPInt
__vbaAryUnlock
__vbaVarForNext
_CIexp
__vbaFreeObj
__vbaFreeStr

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33807876ce3a91e97e1391a13e029e07

Headers

File Characteristics

Imports

gdi32

opengl32

glu32

msvbvm60

Sections

.text Size: 164KB - Virtual size: 163KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 164KB - Virtual size: 163KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 36KB - Virtual size: 35KB