99573ed131531004c9c4a0977324b358_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

99573ed131531004c9c4a0977324b358_JaffaCakes118
Size

15KB
MD5

99573ed131531004c9c4a0977324b358
SHA1

2b4e01b0c7be320ab1fcba3524297e05ffacd9b5
SHA256

5e516dce2f43bf2c205d9be086250ccb3e6bd3fb8939064ae549f1883c57b30f
SHA512

85815d862d216aa6981fc9ce094bc96e6d15293eb613f446e5e917d61a5981d078fb230f0320e83dacffba32effe9163237c806e220c6f4b35412e584d03b154
SSDEEP

384:JxlsBzimAaqVGEvaVGqpTECOlt69IIfr:/etp1ClpCOll6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99573ed131531004c9c4a0977324b358_JaffaCakes118

Files

99573ed131531004c9c4a0977324b358_JaffaCakes118
.dll windows:5 windows x64 arch:x64

f76a70015e098d4664bea478debc0e66

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

qtopengl4

?createWindowSurface@QGLGraphicsSystem@@UEBAPEAVQWindowSurface@@PEAVQWidget@@@Z
?createPixmapData@QGLGraphicsSystem@@UEBAPEAVQPixmapData@@W4PixelType@2@@Z
?setPreferredPaintEngine@QGL@@YAXW4Type@QPaintEngine@@@Z
??0QGLGraphicsSystem@@QEAA@_N@Z

qtgui4

??1QGraphicsSystemPlugin@@UEAA@XZ
?qt_metacall@QGraphicsSystemPlugin@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QGraphicsSystemPlugin@@UEAAPEAXPEBD@Z
?metaObject@QGraphicsSystemPlugin@@UEBAPEBUQMetaObject@@XZ
??0QGraphicsSystemPlugin@@QEAA@PEAVQObject@@@Z
??1QGraphicsSystem@@UEAA@XZ
?platformExtension@QGraphicsSystem@@UEAAPEAVQGraphicsSystemEx@@XZ
?createPixmapData@QGraphicsSystem@@UEAAPEAVQPixmapData@@PEAV2@@Z

qtcore4

?detach_grow@QListData@@QEAAPEAUData@1@PEAHH@Z
?append@QListData@@QEAAPEAPEAXXZ
?fromLatin1_helper@QString@@CAPEAUData@1@PEBDH@Z
?qFree@@YAXPEAX@Z
??0QString@@QEAA@AEBV0@@Z
?changeGuard@QMetaObject@@SAXPEAPEAVQObject@@PEAV2@@Z
?removeGuard@QMetaObject@@SAXPEAPEAVQObject@@@Z
?disconnectNotify@QObject@@MEAAXPEBD@Z
?connectNotify@QObject@@MEAAXPEBD@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?toLower@QString@@QEBA?AV1@XZ
??8QString@@QEBA_NAEBVQLatin1String@@@Z
?free@QString@@CAXPEAUData@1@@Z
??1QString@@QEAA@XZ
?shared_null@QListData@@2UData@1@A

msvcr100

__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
?terminate@@YAXXZ
_amsg_exit
_encoded_null
free
_initterm_e
_initterm
_malloc_crt
_onexit
_lock
__dllonexit
_unlock
__C_specific_handler
__CppXcptFilter
_CxxThrowException
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
__CxxFrameHandler3

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
Sleep
DecodePointer
EncodePointer

Exports

Exports

qt_plugin_instance
qt_plugin_query_verification_data

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f76a70015e098d4664bea478debc0e66

Headers

DLL Characteristics

File Characteristics

Imports

qtopengl4

qtgui4

qtcore4

msvcr100

kernel32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 432B

.pdata Size: 512B - Virtual size: 504B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 136B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 432B

.pdata
Size: 512B - Virtual size: 504B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 136B