0a243ab8686d0e180a43fc31af630fd2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0a243ab8686d0e180a43fc31af630fd2_JaffaCakes118
Size

60KB
MD5

0a243ab8686d0e180a43fc31af630fd2
SHA1

0b6be822a4d204a2e08e67f94c6fa07376fbc31f
SHA256

863318e72aebfdd7091b2dfa18ab5382a7a09ab1dc30367d99f418f87f8aa6a9
SHA512

0aadd48be91f476b912ed0ba9347b34cfe2b68eef684020518e88f6f338cf1411ed027bd676d83740e07439504395614eb088e28f4c34e04958b7e71bcadf3a5
SSDEEP

768:T4DRVkZAqP7Cxr31Qett9xcm0jvENfkcaUeF4gxaJRCiJbwNgpAW04C+rZcs0Aky:/jiBxcJjvEpkcaUebKCgpAWq+qSr/1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a243ab8686d0e180a43fc31af630fd2_JaffaCakes118

Files

0a243ab8686d0e180a43fc31af630fd2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5c8d975db85067715763876f40e1e5c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libakai-0

_ZN10AkaiSample10LoadHeaderEv
_ZN10AkaiSample4ReadEPvj
_ZN10AkaiVolume10GetProgramEj
_ZN10AkaiVolume11ListSamplesERNSt7__cxx114listI12AkaiDirEntrySaIS2_EEE
_ZN10AkaiVolume12ListProgramsERNSt7__cxx114listI12AkaiDirEntrySaIS2_EEE
_ZN10AkaiVolume9GetSampleEj
_ZN13AkaiPartition11ListVolumesERNSt7__cxx114listI12AkaiDirEntrySaIS2_EEE
_ZN13AkaiPartition9GetVolumeEj
_ZN8AkaiDisk12GetPartitionEj
_ZN8AkaiDisk17GetPartitionCountEv
_ZN8AkaiDiskC1EP9DiskImage
_ZN9DiskImageC1Ei

libsndfile-1

sf_close
sf_command
sf_open
sf_strerror
sf_write_int
sf_write_short

libgcc_s_dw2-1

_Unwind_Resume
__deregister_frame_info
__register_frame_info
__udivdi3
__umoddi3

kernel32

DeleteCriticalSection
EnterCriticalSection
FormatMessageA
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetFileAttributesA
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LocalFree
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteConsoleW

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__mb_cur_max
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_findclose
_findfirst
_fmode
_fullpath
_initterm
_iob
_kbhit
_lock
_onexit
_stat
calloc
exit
fflush
fprintf
fputc
free
fwrite
getchar
getenv
localeconv
malloc
memcpy
perror
setlocale
signal
strchr
strcpy
strerror
strlen
strncmp
_unlock
abort
atoi
toupper
vfprintf
wcslen
_findnext
_mkdir

libstdc++-6

_ZNKSt5ctypeIcE13_M_widen_initEv
_ZNSo3putEc
_ZNSo5flushEv
_ZNSolsEi
_ZNSt6localeC1Ev
_ZNSt6localeD1Ev
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE10_M_replaceEjjPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_appendEPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_assignERKS4_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_createERjj
_ZNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEED1Ev
_ZNSt8ios_base4InitC1Ev
_ZNSt8ios_base4InitD1Ev
_ZNSt8ios_baseC2Ev
_ZNSt8ios_baseD2Ev
_ZNSt9basic_iosIcSt11char_traitsIcEE4initEPSt15basic_streambufIcS1_E
_ZNSt9basic_iosIcSt11char_traitsIcEE5clearESt12_Ios_Iostate
_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_i
_ZSt16__throw_bad_castv
_ZSt19__throw_logic_errorPKc
_ZSt20__throw_length_errorPKc
_ZSt4cerr
_ZTTNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEE
_ZTVNSt7__cxx1115basic_stringbufIcSt11char_traitsIcESaIcEEE
_ZTVNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZdaPv
_ZdlPv
_ZdlPvj
_Znaj
_Znwj
__cxa_throw_bad_array_new_length
__gxx_personality_v0

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5c8d975db85067715763876f40e1e5c7

Headers

File Characteristics

Imports

libakai-0

libsndfile-1

libgcc_s_dw2-1

kernel32

msvcrt

libstdc++-6

Sections

.text Size: 40KB - Virtual size: 39KB

.data Size: 512B - Virtual size: 96B

.rdata Size: 5KB - Virtual size: 4KB

/4 Size: 7KB - Virtual size: 6KB

.bss Size: - Virtual size: 3KB

.idata Size: 5KB - Virtual size: 5KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.text
Size: 40KB - Virtual size: 39KB

.data
Size: 512B - Virtual size: 96B

.rdata
Size: 5KB - Virtual size: 4KB

/4
Size: 7KB - Virtual size: 6KB

.bss
Size: - Virtual size: 3KB

.idata
Size: 5KB - Virtual size: 5KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B