JaffaCakes118_1a0a6597af66859243f756f6fde625c7

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_1a0a6597af66859243f756f6fde625c7
Size

412KB
MD5

1a0a6597af66859243f756f6fde625c7
SHA1

899c54d6258278faf91a5c7adb382253e6b19d5b
SHA256

31d9328a5c77b2ac0337798e3102952f99ddb4926328a1af6ec2573c0cd21a47
SHA512

3fbad6b94a08933c2a26227cfcccbb4f408de2b1499ca18bfc54f5522a076793dd485ef94589c4ab734951f49b3559c6d66e850f09487ea9e2e9adc96381c142
SSDEEP

3072:gF+jfPsCLt5oMxHLXy7DWhiU/mUpZ1KeIDmVVaPzrc77OWw8x8conyDldbcdzvTZ:RNR71eCZEeVVsc769/concldbs+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1a0a6597af66859243f756f6fde625c7

Files

JaffaCakes118_1a0a6597af66859243f756f6fde625c7
.exe windows:4 windows x86 arch:x86

5fa2538ffc48bcce4a3f039752c9e90b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvbvm60

ord696
MethCallEngine
ord628
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord537
ord644
Zombie_AddRef
ord100
ord616

Sections

0
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

10
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5fa2538ffc48bcce4a3f039752c9e90b

Headers

File Characteristics

Imports

msvbvm60

Sections

0 Size: 128KB - Virtual size: 128KB

1 Size: 4KB - Virtual size: 4KB

2 Size: 4KB - Virtual size: 4KB

3 Size: 72KB - Virtual size: 72KB

4 Size: 4KB - Virtual size: 4KB

5 Size: 32KB - Virtual size: 32KB

6 Size: 48KB - Virtual size: 48KB

7 Size: 4KB - Virtual size: 4KB

8 Size: 72KB - Virtual size: 72KB

9 Size: 4KB - Virtual size: 4KB

10 Size: 36KB - Virtual size: 36KB

0
Size: 128KB - Virtual size: 128KB

1
Size: 4KB - Virtual size: 4KB

2
Size: 4KB - Virtual size: 4KB

3
Size: 72KB - Virtual size: 72KB

4
Size: 4KB - Virtual size: 4KB

5
Size: 32KB - Virtual size: 32KB

6
Size: 48KB - Virtual size: 48KB

7
Size: 4KB - Virtual size: 4KB

8
Size: 72KB - Virtual size: 72KB

9
Size: 4KB - Virtual size: 4KB

10
Size: 36KB - Virtual size: 36KB