ff3e927c5b02ff37c7b57d2747608a37_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ff3e927c5b02ff37c7b57d2747608a37_JaffaCakes118
Size

302KB
MD5

ff3e927c5b02ff37c7b57d2747608a37
SHA1

6cbb46fd58f68b51c4f7f62defee376bb33870f3
SHA256

69fb1de4026d3e10638dec27f418283aba7fc93b8c3a68f74404f35d5a41ad24
SHA512

e81cdbfd07761a4c89f0e41dd646412bb1964f8e17bbeb3a52e1669e32fdb2d9cad5876b7fc7590de1de9f29a2b1b0de74eb14d47ca966a5d78a75792e20fb7a
SSDEEP

6144:H7vVzAFa4HecC+lSw5WTH701i8U6iyPxJ8CszKiwfzQSo2i2C9PV+wDOAUmwyJR:JzAM4+cx9WTH7Ci/yPL8zKzLoVjdZjnj

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/xmplay34/xmp-cd.dll
unpack001/xmplay34/xmp-wadsp.dll
unpack001/xmplay34/xmp-wma.dll
unpack001/xmplay34/xmplay.exe

Files

ff3e927c5b02ff37c7b57d2747608a37_JaffaCakes118
.rar
xmplay34/FILE_ID.DIZ
xmplay34/xmp-cd.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

GetTrackList
XMPIN_GetInterface

Sections

Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 987B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xmplay34/xmp-wadsp.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

XMPDSP_GetInterface2

Sections

Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 377B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 913B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xmplay34/xmp-wma.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

XMPIN_GetInterface

Sections

Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 600B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 953B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xmplay34/xmplay.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 183KB - Virtual size: 764KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xmplay34/xmplay.txt
xmplay34/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 10KB - Virtual size: 20KB

.rsrc Size: 1KB - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: 1024B - Virtual size: 987B

Headers

File Characteristics

Exports

Exports

Sections

Size: 4KB - Virtual size: 12KB

.rsrc Size: 377B - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: 1024B - Virtual size: 913B

Headers

File Characteristics

Exports

Exports

Sections

Size: 7KB - Virtual size: 16KB

.rsrc Size: 600B - Virtual size: 4KB

Size: - Virtual size: 4KB

Size: 1024B - Virtual size: 953B

Headers

File Characteristics

Sections

Size: 183KB - Virtual size: 764KB

.rsrc Size: 78KB - Virtual size: 580KB

Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 377B - Virtual size: 4KB

.rsrc
Size: 600B - Virtual size: 4KB

.rsrc
Size: 78KB - Virtual size: 580KB