0f61ca8106f401101ef017bd831372f8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0f61ca8106f401101ef017bd831372f8_JaffaCakes118
Size

292KB
MD5

0f61ca8106f401101ef017bd831372f8
SHA1

4bed4d81cb96041910ce33964df18b8b28779e08
SHA256

5df350657eedcff52b60a9aa497fa19cffefe140b54ba9b23fa299111fdbf1fe
SHA512

efccf0e5821cded5f9c9adea1692f0196204e6eacf57fd4425cf966a7a73e6ac6e94ac8d05003132331edaa331371c96bf0c387e4932a9624fc8c7889b12a8b9
SSDEEP

6144:V0D3yTjQbErlrUJV6RhxNQBDOi5uHStL6XZW8b:GD3Kj5rlaIRqwHStLEIW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f61ca8106f401101ef017bd831372f8_JaffaCakes118

Files

0f61ca8106f401101ef017bd831372f8_JaffaCakes118
.dll windows:4 windows x86 arch:x86

814593c054d9b5ed22e3d968ccfd9287

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\bwa\QuickTimeWin-637\srcroot\BuildResults\NoSym\npqtplugin.pdb

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GetModuleHandleA
GetLastError
LoadLibraryA
GlobalFree
GlobalAlloc
CloseHandle
GetModuleFileNameA
GetCurrentProcessId
FlushFileBuffers
HeapSize
SetStdHandle
GetSystemDirectoryA
GetProcAddress
FreeLibrary
GetCurrentProcess
ExitProcess
GetFileAttributesA
GetCurrentThreadId
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TerminateProcess
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
RtlUnwind
InterlockedExchange
VirtualQuery
SetFilePointer
EnterCriticalSection
LeaveCriticalSection
GetLocaleInfoA
GetCPInfo
VirtualProtect
VirtualAlloc
GetSystemInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
HeapReAlloc
InitializeCriticalSection

user32

LoadStringA
wsprintfA
MessageBoxA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Exports

Exports

DllMain
Java_QuickTimePlugin_GetAutoPlay_stub
Java_QuickTimePlugin_GetBgColor_stub
Java_QuickTimePlugin_GetCancelBubble_stub
Java_QuickTimePlugin_GetChapterCount_stub
Java_QuickTimePlugin_GetChapterName_stub
Java_QuickTimePlugin_GetComponentVersion_stub
Java_QuickTimePlugin_GetControllerVisible_stub
Java_QuickTimePlugin_GetDuration_stub
Java_QuickTimePlugin_GetEndTime_stub
Java_QuickTimePlugin_GetFieldOfView_stub
Java_QuickTimePlugin_GetHREF_stub
Java_QuickTimePlugin_GetHotspotTarget_stub
Java_QuickTimePlugin_GetHotspotUrl_stub
Java_QuickTimePlugin_GetIsLooping_stub
Java_QuickTimePlugin_GetIsQuickTimeRegistered_stub
Java_QuickTimePlugin_GetIsVRMovie_stub
Java_QuickTimePlugin_GetKioskMode_stub
Java_QuickTimePlugin_GetLanguage_stub
Java_QuickTimePlugin_GetLoopIsPalindrome_stub
Java_QuickTimePlugin_GetMIMEType_stub
Java_QuickTimePlugin_GetMatrix_stub
Java_QuickTimePlugin_GetMaxBytesLoaded_stub
Java_QuickTimePlugin_GetMaxTimeLoaded_stub
Java_QuickTimePlugin_GetMovieID_stub
Java_QuickTimePlugin_GetMovieName_stub
Java_QuickTimePlugin_GetMovieSize_stub
Java_QuickTimePlugin_GetMute_stub
Java_QuickTimePlugin_GetNodeCount_stub
Java_QuickTimePlugin_GetNodeID_stub
Java_QuickTimePlugin_GetPanAngle_stub
Java_QuickTimePlugin_GetPlayEveryFrame_stub
Java_QuickTimePlugin_GetPluginStatus_stub
Java_QuickTimePlugin_GetPluginVersion_stub
Java_QuickTimePlugin_GetQTNEXTUrl_stub
Java_QuickTimePlugin_GetQuickTimeConnectionSpeed_stub
Java_QuickTimePlugin_GetQuickTimeLanguage_stub
Java_QuickTimePlugin_GetQuickTimeVersion_stub
Java_QuickTimePlugin_GetRate_stub
Java_QuickTimePlugin_GetRectangle_stub
Java_QuickTimePlugin_GetResetPropertiesOnReload_stub
Java_QuickTimePlugin_GetSpriteTrackVariable_stub
Java_QuickTimePlugin_GetStartTime_stub
Java_QuickTimePlugin_GetTarget_stub
Java_QuickTimePlugin_GetTiltAngle_stub
Java_QuickTimePlugin_GetTimeScale_stub
Java_QuickTimePlugin_GetTime_stub
Java_QuickTimePlugin_GetTrackCount_stub
Java_QuickTimePlugin_GetTrackEnabled_stub
Java_QuickTimePlugin_GetTrackName_stub
Java_QuickTimePlugin_GetTrackType_stub
Java_QuickTimePlugin_GetURL_stub
Java_QuickTimePlugin_GetUserData_stub
Java_QuickTimePlugin_GetVolume_stub
Java_QuickTimePlugin_GoPreviousNode_stub
Java_QuickTimePlugin_GoToChapter_stub
Java_QuickTimePlugin_Play_stub
Java_QuickTimePlugin_Rewind_stub
Java_QuickTimePlugin_SendSpriteEvent_stub
Java_QuickTimePlugin_SetAutoPlay_stub
Java_QuickTimePlugin_SetBgColor_stub
Java_QuickTimePlugin_SetCancelBubble_stub
Java_QuickTimePlugin_SetControllerVisible_stub
Java_QuickTimePlugin_SetEndTime_stub
Java_QuickTimePlugin_SetEventHandlerFunc_stub
Java_QuickTimePlugin_SetFieldOfView_stub
Java_QuickTimePlugin_SetHREF_stub
Java_QuickTimePlugin_SetHotspotTarget_stub
Java_QuickTimePlugin_SetHotspotUrl_stub
Java_QuickTimePlugin_SetIsLooping_stub
Java_QuickTimePlugin_SetKioskMode_stub
Java_QuickTimePlugin_SetLanguage_stub
Java_QuickTimePlugin_SetLoopIsPalindrome_stub
Java_QuickTimePlugin_SetMatrix_stub
Java_QuickTimePlugin_SetMovieID_stub
Java_QuickTimePlugin_SetMovieName_stub
Java_QuickTimePlugin_SetMute_stub
Java_QuickTimePlugin_SetNodeID_stub
Java_QuickTimePlugin_SetPanAngle_stub
Java_QuickTimePlugin_SetPlayEveryFrame_stub
Java_QuickTimePlugin_SetQTNEXTUrl_stub
Java_QuickTimePlugin_SetRate_stub
Java_QuickTimePlugin_SetRectangle_stub
Java_QuickTimePlugin_SetResetPropertiesOnReload_stub
Java_QuickTimePlugin_SetSpriteTrackVariable_stub
Java_QuickTimePlugin_SetStartTime_stub
Java_QuickTimePlugin_SetTarget_stub
Java_QuickTimePlugin_SetTiltAngle_stub
Java_QuickTimePlugin_SetTime_stub
Java_QuickTimePlugin_SetTrackEnabled_stub
Java_QuickTimePlugin_SetURL_stub
Java_QuickTimePlugin_SetVolume_stub
Java_QuickTimePlugin_ShowDefaultView_stub
Java_QuickTimePlugin_Step_stub
Java_QuickTimePlugin_Stop_stub
Java_java_lang_Float_floatToIntBits_stub
Java_java_lang_Float_intBitsToFloat_stub
Java_java_lang_Float_toString_stub
Java_java_lang_Float_valueOf_stub
NP_GetEntryPoints
NP_Initialize
NP_Shutdown
native_QuickTimePlugin_GetAutoPlay
native_QuickTimePlugin_GetBgColor
native_QuickTimePlugin_GetCancelBubble
native_QuickTimePlugin_GetChapterCount
native_QuickTimePlugin_GetChapterName
native_QuickTimePlugin_GetComponentVersion
native_QuickTimePlugin_GetControllerVisible
native_QuickTimePlugin_GetDuration
native_QuickTimePlugin_GetEndTime
native_QuickTimePlugin_GetFieldOfView
native_QuickTimePlugin_GetHREF
native_QuickTimePlugin_GetHotspotTarget
native_QuickTimePlugin_GetHotspotUrl
native_QuickTimePlugin_GetIsLooping
native_QuickTimePlugin_GetIsQuickTimeRegistered
native_QuickTimePlugin_GetIsVRMovie
native_QuickTimePlugin_GetKioskMode
native_QuickTimePlugin_GetLanguage
native_QuickTimePlugin_GetLoopIsPalindrome
native_QuickTimePlugin_GetMIMEType
native_QuickTimePlugin_GetMatrix
native_QuickTimePlugin_GetMaxBytesLoaded
native_QuickTimePlugin_GetMaxTimeLoaded
native_QuickTimePlugin_GetMovieID
native_QuickTimePlugin_GetMovieName
native_QuickTimePlugin_GetMovieSize
native_QuickTimePlugin_GetMute
native_QuickTimePlugin_GetNodeCount
native_QuickTimePlugin_GetNodeID
native_QuickTimePlugin_GetPanAngle
native_QuickTimePlugin_GetPlayEveryFrame
native_QuickTimePlugin_GetPluginStatus
native_QuickTimePlugin_GetPluginVersion
native_QuickTimePlugin_GetQTNEXTUrl
native_QuickTimePlugin_GetQuickTimeConnectionSpeed
native_QuickTimePlugin_GetQuickTimeLanguage
native_QuickTimePlugin_GetQuickTimeVersion
native_QuickTimePlugin_GetRate
native_QuickTimePlugin_GetRectangle
native_QuickTimePlugin_GetResetPropertiesOnReload
native_QuickTimePlugin_GetSpriteTrackVariable
native_QuickTimePlugin_GetStartTime
native_QuickTimePlugin_GetTarget
native_QuickTimePlugin_GetTiltAngle
native_QuickTimePlugin_GetTime
native_QuickTimePlugin_GetTimeScale
native_QuickTimePlugin_GetTrackCount
native_QuickTimePlugin_GetTrackEnabled
native_QuickTimePlugin_GetTrackName
native_QuickTimePlugin_GetTrackType
native_QuickTimePlugin_GetURL
native_QuickTimePlugin_GetUserData
native_QuickTimePlugin_GetVolume
native_QuickTimePlugin_GoPreviousNode
native_QuickTimePlugin_GoToChapter
native_QuickTimePlugin_Play
native_QuickTimePlugin_Rewind
native_QuickTimePlugin_SendSpriteEvent
native_QuickTimePlugin_SetAutoPlay
native_QuickTimePlugin_SetBgColor
native_QuickTimePlugin_SetCancelBubble
native_QuickTimePlugin_SetControllerVisible
native_QuickTimePlugin_SetEndTime
native_QuickTimePlugin_SetEventHandlerFunc
native_QuickTimePlugin_SetFieldOfView
native_QuickTimePlugin_SetHREF
native_QuickTimePlugin_SetHotspotTarget
native_QuickTimePlugin_SetHotspotUrl
native_QuickTimePlugin_SetIsLooping
native_QuickTimePlugin_SetKioskMode
native_QuickTimePlugin_SetLanguage
native_QuickTimePlugin_SetLoopIsPalindrome
native_QuickTimePlugin_SetMatrix
native_QuickTimePlugin_SetMovieID
native_QuickTimePlugin_SetMovieName
native_QuickTimePlugin_SetMute
native_QuickTimePlugin_SetNodeID
native_QuickTimePlugin_SetPanAngle
native_QuickTimePlugin_SetPlayEveryFrame
native_QuickTimePlugin_SetQTNEXTUrl
native_QuickTimePlugin_SetRate
native_QuickTimePlugin_SetRectangle
native_QuickTimePlugin_SetResetPropertiesOnReload
native_QuickTimePlugin_SetSpriteTrackVariable
native_QuickTimePlugin_SetStartTime
native_QuickTimePlugin_SetTarget
native_QuickTimePlugin_SetTiltAngle
native_QuickTimePlugin_SetTime
native_QuickTimePlugin_SetTrackEnabled
native_QuickTimePlugin_SetURL
native_QuickTimePlugin_SetVolume
native_QuickTimePlugin_ShowDefaultView
native_QuickTimePlugin_Step
native_QuickTimePlugin_Stop
native_java_lang_Float_floatToIntBits
native_java_lang_Float_intBitsToFloat
native_java_lang_Float_toString
native_java_lang_Float_valueOf
register_QuickTimePlugin
unregister_QuickTimePlugin
unuse_QuickTimePlugin
unuse_java_lang_Boolean
unuse_java_lang_Float
unuse_java_lang_Integer
unuse_netscape_plugin_Plugin
use_QuickTimePlugin
use_java_lang_Boolean
use_java_lang_Float
use_java_lang_Integer
use_netscape_plugin_Plugin

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

814593c054d9b5ed22e3d968ccfd9287

Headers

File Characteristics

PDB Paths

Imports

version

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 8KB - Virtual size: 10KB

.rsrc Size: 20KB - Virtual size: 16KB

.reloc Size: 16KB - Virtual size: 12KB

.text Size: 164KB - Virtual size: 164KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 8KB - Virtual size: 10KB

.rsrc
Size: 20KB - Virtual size: 16KB

.reloc
Size: 16KB - Virtual size: 12KB

.text
Size: 164KB - Virtual size: 164KB