274b704c79421b1bd2122ad2d461fcfa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

274b704c79421b1bd2122ad2d461fcfa_JaffaCakes118
Size

175KB
MD5

274b704c79421b1bd2122ad2d461fcfa
SHA1

115e3bb8f2268d5f456092449d82f95c90abf27b
SHA256

3a68c39dc67b78c7c93ee162e1bf10d2109f9fb73b32b35ee20199a7e54221b0
SHA512

e8c4dc51c68c66196e0b056ace8c90958e84b8ce6f0d4e3b854a9812e2dd57477bac23345ddd34a2b99ac830470cdb2c8165d0b60ae1effe83825e3b3f689adb
SSDEEP

3072:NbA60u1mcDdfo9TBfF+aA9h/kGBBmYKj02HklyswLY3f8:NbF1xfo9TBNNsVkcgw2HlswLY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
274b704c79421b1bd2122ad2d461fcfa_JaffaCakes118

Files

274b704c79421b1bd2122ad2d461fcfa_JaffaCakes118
.dll windows:5 windows x86 arch:x86

bad4076945ff22b6a2b68b98c5e71a56

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\svn\src-trunk\Release\subversion\libsvn_delta\libsvn_delta-1.pdb

Imports

msvcr90

_except_handler4_common
_onexit
_crt_debugger_hook
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_encode_pointer
memset
memmove
memcpy
qsort
strchr
abort
malloc

kernel32

LoadLibraryA
GetProcAddress
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

libsvn_subr-1

svn_stringbuf_ensure
svn_string_create
svn_stringbuf_appendstr
svn_error_createf
svn_stringbuf_ncreate
svn_io_file_seek
svn_stream_empty
svn_sort_compare_paths
svn_path_is_empty
svn_path_get_longest_ancestor
svn_path_split
svn_pool_create_ex
svn_stream_create
svn_stream_set_write
svn_stream_set_close
svn_checksum_ctx_create
svn_checksum_final
svn_checksum_update
svn_stringbuf_create
svn_stream_close
svn_stream_read
svn_error__locate
svn_error_create
svn_stringbuf_create_from_string
svn_stream_from_aprfile2
svn_stringbuf_appendbytes
svn_error__malfunction
svn_stream_write

libapr-1

_apr_pstrmemdup@12
_apr_pmemdup@12
_apr_array_push@4
_apr_array_make@12
_apr_pool_clear@4
_apr_palloc@8
_apr_pstrdup@8
_apr_array_pop@4
_apr_pool_destroy@4

libaprutil-1

_apr_md5_final@8
_apr_md5_update@12
_apr_md5_init@4

Exports

Exports

svn_compat_wrap_file_rev_handler
svn_delta_default_editor
svn_delta_depth_filter_editor
svn_delta_get_cancellation_editor
svn_delta_noop_window_handler
svn_delta_path_driver
svn_delta_version
svn_txdelta
svn_txdelta_apply
svn_txdelta_apply_instructions
svn_txdelta_compose_windows
svn_txdelta_md5_digest
svn_txdelta_next_window
svn_txdelta_parse_svndiff
svn_txdelta_read_svndiff_window
svn_txdelta_run
svn_txdelta_send_stream
svn_txdelta_send_string
svn_txdelta_send_txstream
svn_txdelta_skip_svndiff_window
svn_txdelta_stream_create
svn_txdelta_target_push
svn_txdelta_to_svndiff
svn_txdelta_to_svndiff2
svn_txdelta_window_dup

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bad4076945ff22b6a2b68b98c5e71a56

Headers

File Characteristics

PDB Paths

Imports

msvcr90

kernel32

libsvn_subr-1

libapr-1

libaprutil-1

Exports

Exports

Sections

.text Size: 42KB - Virtual size: 41KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 512B - Virtual size: 924B

.rsrc Size: 110KB - Virtual size: 110KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 42KB - Virtual size: 41KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 512B - Virtual size: 924B

.rsrc
Size: 110KB - Virtual size: 110KB

.reloc
Size: 2KB - Virtual size: 1KB