8086f5dce6a5d98b54973268cd39bbdb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8086f5dce6a5d98b54973268cd39bbdb_JaffaCakes118
Size

51KB
MD5

8086f5dce6a5d98b54973268cd39bbdb
SHA1

141d4734c4f93162adfcdb5f811826527c57a337
SHA256

2cea7b9b6eb54a97827e7a9474fc43a9982ae98ab843ed087c898d09ca61c4f4
SHA512

b3672e0bd310c93f0b4956a99f9abf61d7237d67ad4cf398cf1e7ce357e2ef4c2603c526b46d3ecbd3beb7096e93dc31e09c0407585f13a2115aad738145911b
SSDEEP

768:586HKsRzvSmR5TOEmxLvo1BfUIT6WJr+xspyx7L3i6VXL9OlskN45X6:y6qsRz7fGBWl+xspyx7L3F79Ol1NWX6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8086f5dce6a5d98b54973268cd39bbdb_JaffaCakes118

Files

8086f5dce6a5d98b54973268cd39bbdb_JaffaCakes118
.dll windows:5 windows x64 arch:x64

49100684f87beaf1071fe88950080f2e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

qtnetwork4

?staticMetaObject@QBearerEngine@@2UQMetaObject@@B
?qt_metacall@QBearerEngine@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QBearerEngine@@UEAAPEAXPEBD@Z
?staticMetaObject@QNetworkSessionPrivate@@2UQMetaObject@@B
?qt_metacall@QNetworkSessionPrivate@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QNetworkSessionPrivate@@UEAAPEAXPEBD@Z
??1QBearerEnginePlugin@@UEAA@XZ
?qt_metacall@QBearerEnginePlugin@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QBearerEnginePlugin@@UEAAPEAXPEBD@Z
?metaObject@QBearerEnginePlugin@@UEBAPEBUQMetaObject@@XZ
??0QBearerEnginePlugin@@QEAA@PEAVQObject@@@Z
?type@QNetworkConfiguration@@QEBA?AW4Type@1@XZ
?children@QNetworkConfiguration@@QEBA?AV?$QList@VQNetworkConfiguration@@@@XZ
??4QNetworkConfiguration@@QEAAAEAV0@AEBV0@@Z
?newConfigurationActivated@QNetworkSessionPrivate@@IEAAXXZ
?qNetworkConfigurationManagerPrivate@@YAPEAVQNetworkConfigurationManagerPrivate@@XZ
?engines@QNetworkConfigurationManagerPrivate@@QEBA?AV?$QList@PEAVQBearerEngine@@@@XZ
?state@QNetworkConfiguration@@QEBA?AV?$QFlags@W4StateFlag@QNetworkConfiguration@@@@XZ
??0QNetworkConfiguration@@QEAA@AEBV0@@Z
??1QNetworkConfiguration@@QEAA@XZ
??8QNetworkConfiguration@@QEBA_NAEBV0@@Z
?quitPendingWaitsForOpened@QNetworkSessionPrivate@@IEAAXXZ
?stateChanged@QNetworkSessionPrivate@@IEAAXW4State@QNetworkSession@@@Z
?identifier@QNetworkConfiguration@@QEBA?AVQString@@XZ
??0QNetworkInterface@@QEAA@XZ
?interfaceFromName@QNetworkInterface@@SA?AV1@AEBVQString@@@Z
?isValid@QNetworkConfiguration@@QEBA_NXZ
?error@QNetworkSessionPrivate@@IEAAXW4SessionError@QNetworkSession@@@Z
?closed@QNetworkSessionPrivate@@IEAAXXZ
?allInterfaces@QNetworkInterface@@SA?AV?$QList@VQNetworkInterface@@@@XZ
?isValid@QNetworkInterface@@QEBA_NXZ
?flags@QNetworkInterface@@QEBA?AV?$QFlags@W4InterfaceFlag@QNetworkInterface@@@@XZ
?name@QNetworkInterface@@QEBA?AVQString@@XZ
?index@QNetworkInterface@@QEBAHXZ
?hardwareAddress@QNetworkInterface@@QEBA?AVQString@@XZ
?humanReadableName@QNetworkInterface@@QEBA?AVQString@@XZ
?addressEntries@QNetworkInterface@@QEBA?AV?$QList@VQNetworkAddressEntry@@@@XZ
?configurationChanged@QBearerEngine@@IEAAXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z
?configurationAdded@QBearerEngine@@IEAAXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z
?configurationRemoved@QBearerEngine@@IEAAXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z
?updateCompleted@QBearerEngine@@IEAAXXZ
?interfaceFromIndex@QNetworkInterface@@SA?AV1@H@Z
??0QNetworkInterface@@QEAA@AEBV0@@Z
??1QNetworkAddressEntry@@QEAA@XZ
??1QNetworkInterface@@QEAA@XZ
??1QNetworkSessionPrivate@@UEAA@XZ
?setALREnabled@QNetworkSessionPrivate@@UEAAX_N@Z
??0QNetworkSessionPrivate@@QEAA@XZ
??1QBearerEngine@@UEAA@XZ
?requiresPolling@QBearerEngine@@UEBA_NXZ
??0QBearerEngine@@QEAA@PEAVQObject@@@Z

qtcore4

?changeGuard@QMetaObject@@SAXPEAPEAVQObject@@PEAV2@@Z
?removeGuard@QMetaObject@@SAXPEAPEAVQObject@@@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
?cast@QMetaObject@@QEBAPEAVQObject@@PEAV2@@Z
?registerType@QMetaType@@SAHPEBDP6AXPEAX@ZP6APEAXPEBX@Z@Z
?toInt@QVariant@@QEBAHPEA_N@Z
?connect@QObject@@SA_NPEBV1@PEBD01W4ConnectionType@Qt@@@Z
??8QString@@QEBA_NAEBVQLatin1String@@@Z
??0QVariant@@QEAA@H@Z
??0QVariant@@QEAA@XZ
?qt_metacall@QObject@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?disconnect@QObject@@SA_NPEBV1@PEBD01@Z
?currentDateTime@QDateTime@@SA?AV1@XZ
?toTime_t@QDateTime@@QEBAIXZ
??1QDateTime@@QEAA@XZ
?activate@QMetaObject@@SAXPEAVQObject@@PEBU1@HPEAPEAX@Z
??1QString@@QEAA@XZ
?append@QString@@QEAAAEAV1@AEBV1@@Z
??0QString@@QEAA@AEBV0@@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXPEBD@Z
?disconnectNotify@QObject@@MEAAXPEBD@Z
?free@QString@@CAXPEAUData@1@@Z
?utf16@QString@@QEBAPEBGXZ
?arg@QString@@QEBA?AV1@AEBV1@HAEBVQChar@@@Z
?fromLatin1@QString@@SA?AV1@PEBDH@Z
??0QChar@@QEAA@UQLatin1Char@@@Z
?shared_null@QMapData@@2U1@A
?shared_null@QListData@@2UData@1@A
?nextNode@QHashData@@SAPEAUNode@1@PEAU21@@Z
??8QString@@QEBA_NAEBV0@@Z
??MQString@@QEBA_NAEBV0@@Z
?continueFreeData@QMapData@@QEAAXH@Z
?qHash@@YAIAEBVQString@@@Z
?allocateNode@QHashData@@QEAAPEAXH@Z
?erase@QListData@@QEAAPEAPEAXPEAPEAX@Z
?qFree@@YAXPEAX@Z
?shared_null@QString@@0UData@1@A
?detach_grow@QListData@@QEAAPEAUData@1@PEAHH@Z
?detach@QListData@@QEAAPEAUData@1@H@Z
?node_delete@QMapData@@QEAAXQEAPEAUNode@1@HPEAU21@@Z
?node_create@QMapData@@QEAAPEAUNode@1@QEAPEAU21@HH@Z
??0QMutex@@QEAA@W4RecursionMode@0@@Z
?fromLatin1_helper@QString@@CAPEAUData@1@PEBDH@Z
??1QMutexLocker@@QEAA@XZ
?unlockInline@QMutex@@QEAAXXZ
??0QMutexLocker@@QEAA@PEAVQMutex@@@Z
?unlock@QMutexLocker@@QEAAXXZ
?append@QListData@@QEAAPEAPEAXXZ
?freeNode@QHashData@@QEAAXPEAX@Z
?realloc@QListData@@QEAAXH@Z
?createData@QMapData@@SAPEAU1@H@Z
?free_helper@QHashData@@QEAAXP6AXPEAUNode@1@@Z@Z
?detach_helper2@QHashData@@QEAAPEAU1@P6AXPEAUNode@1@PEAX@ZP6AX0@ZHH@Z
??1QMutex@@QEAA@XZ
??4QString@@QEAAAEAV0@AEBV0@@Z
?hasShrunk@QHashData@@QEAAXXZ
?rehash@QHashData@@QEAAXH@Z
?lockInline@QMutex@@QEAAXXZ
?unlock@QMutex@@QEAAXXZ
?lock@QMutex@@QEAAXXZ
??4QString@@QEAAAEAV0@$$QEAV0@@Z
?number@QString@@SA?AV1@IH@Z
?number@QString@@SA?AV1@HH@Z
?tr@QMetaObject@@QEBA?AVQString@@PEBD0@Z
??0QObject@@QEAA@PEAV0@@Z
??1QObject@@UEAA@XZ
?qt_metacast@QObject@@UEAAPEAXPEBD@Z

msvcr100

__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
?terminate@@YAXXZ
__CppXcptFilter
_amsg_exit
_encoded_null
free
_initterm_e
_initterm
_malloc_crt
_onexit
_lock
__dllonexit
_unlock
__C_specific_handler
memcpy
_CxxThrowException
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
_purecall
__CxxFrameHandler3

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
Sleep
DecodePointer
EncodePointer
CreateFileW
DeviceIoControl
CloseHandle

Exports

Exports

qt_plugin_instance
qt_plugin_query_verification_data

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 440B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49100684f87beaf1071fe88950080f2e

Headers

DLL Characteristics

File Characteristics

Imports

qtnetwork4

qtcore4

msvcr100

kernel32

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 1024B - Virtual size: 856B

.pdata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 440B

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 1024B - Virtual size: 856B

.pdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 440B