3f122a2e942f0c502c7ba435abaf23b1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3f122a2e942f0c502c7ba435abaf23b1_JaffaCakes118
Size

42KB
MD5

3f122a2e942f0c502c7ba435abaf23b1
SHA1

747915aceb9f35cd8f61b99feb1b2ce617bda0d4
SHA256

130781fe482a18a15bfa28002ff68a7b0178860d5793a9963795ce36132701f9
SHA512

a655fdc04581bf79665c1d7636a6d1721e7ecfb6561fc028524e1ce3f5fa0afd0cb8345215db05808a0344bc59eee683db12239f073bb012fde05d299a5d7aa1
SSDEEP

768:My9kY/kPPvr9Ai83D3PbIDJfFuO+Rva+nxhlvqSSClM/DOLC/RuY:My2Y/Eai4s1AO+R9xhlv+DOLC/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f122a2e942f0c502c7ba435abaf23b1_JaffaCakes118

Files

3f122a2e942f0c502c7ba435abaf23b1_JaffaCakes118
.dll windows:5 windows x86 arch:x86

1077fed10e09b2956cc62183940b2dbc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

O:\OOO330\ooo\filter\wntmsci12.pro\bin\eptmi.pdb

Imports

tlmi

?GetObject@Container@@QBEPAXK@Z
??1Polygon@@QAE@XZ
??0Polygon@@QAE@ABV0@@Z
?SetPoint@Polygon@@QAEXABVPoint@@G@Z
?SetSize@Polygon@@QAEXG@Z
?Clear@Polygon@@QAEXXZ
?GetSize@Polygon@@QBEGXZ
?GetPoint@Polygon@@QBEABVPoint@@G@Z
??4Polygon@@QAEAAV0@ABV0@@Z
?GetObject@PolyPolygon@@QBEABVPolygon@@G@Z
??0Polygon@@QAE@G@Z
?Count@PolyPolygon@@QBEGXZ
??0Polygon@@QAE@XZ
??6SvStream@@QAEAAV0@F@Z
?PopContext@ResMgr@@QAEXPBVResource@@@Z
??0String@@QAE@PBDGGK@Z
??0String@@QAE@ABVResId@@@Z
??BString@@QBE?AVOUString@rtl@@XZ
??0Fraction@@QAE@JJ@Z
?SetNumberFormatInt@SvStream@@QAEXG@Z
?GetWidth@Rectangle@@QBEJXZ
?GetHeight@Rectangle@@QBEJXZ
?HasFlags@Polygon@@QBEEXZ
?AdaptiveSubdivide@Polygon@@QBEXAAV1@N@Z
??APolygon@@QAEAAVPoint@@G@Z
?getB2DPolygon@Polygon@@QBE?AVB2DPolygon@basegfx@@XZ
??0PolyPolygon@@QAE@ABV0@@Z
??APolyPolygon@@QAEAAVPolygon@@G@Z
??1PolyPolygon@@QAE@XZ
??0String@@QAE@ABV0@GG@Z
??XBigInt@@QAEAAV0@ABV0@@Z
??ZBigInt@@QAEAAV0@ABV0@@Z
??YBigInt@@QAEAAV0@ABV0@@Z
??_0BigInt@@QAEAAV0@ABV0@@Z
??XFraction@@QAEAAV0@ABV0@@Z
?Write@SvStream@@QAEKPBXK@Z
?GetError@SvStream@@QBEKXZ
??0ByteString@@QAE@PBD@Z
?CreateResMgr@ResMgr@@SAPAV1@PBDULocale@lang@star@sun@com@@@Z
??0String@@QAE@XZ
??1ResMgr@@QAE@XZ
?Seek@SvStream@@QAEKK@Z
??0Polygon@@QAE@ABVB2DPolygon@basegfx@@@Z
??0String@@QAE@G@Z
??1String@@QAE@XZ
?Assign@String@@QAEAAV1@ABV1@@Z
??6SvStream@@QAEAAV0@K@Z
?TopLeft@Rectangle@@QBE?AVPoint@@XZ
?GetSize@Rectangle@@QBE?AVSize@@XZ
??0Rectangle@@QAE@ABVPoint@@ABVSize@@@Z
?Justify@Rectangle@@QAEXXZ
??0ByteString@@QAE@ABVString@@GK@Z
??6SvStream@@QAEAAV0@E@Z
??6SvStream@@QAEAAV0@D@Z
??1ByteString@@QAE@XZ
??6SvStream@@QAEAAV0@G@Z
?Equals@String@@QBEEABV1@@Z

vclmi

?KeyInput@Window@@UAEXABVKeyEvent@@@Z
?KeyUp@Window@@UAEXABVKeyEvent@@@Z
?PrePaint@Window@@UAEXXZ
?Paint@Window@@UAEXABVRectangle@@@Z
?Draw@Dialog@@MAEXPAVOutputDevice@@ABVPoint@@ABVSize@@K@Z
?Move@Window@@UAEXXZ
?Resize@Window@@UAEXXZ
?MouseButtonUp@Window@@UAEXABVMouseEvent@@@Z
?Deactivate@Window@@UAEXXZ
?GetFocus@Window@@UAEXXZ
?LoseFocus@Window@@UAEXXZ
?RequestHelp@Window@@UAEXABVHelpEvent@@@Z
?Command@Window@@UAEXABVCommandEvent@@@Z
?Tracking@Window@@UAEXABVTrackingEvent@@@Z
?UserEvent@Window@@UAEXKPAX@Z
?StateChanged@Dialog@@UAEXG@Z
?DataChanged@Dialog@@UAEXABVDataChangedEvent@@@Z
?PreNotify@SystemWindow@@UAEJAAVNotifyEvent@@@Z
?Notify@Dialog@@UAEJAAVNotifyEvent@@@Z
?GetPreferredKeyInputWindow@Window@@UAEPAV1@XZ
?SetSettings@Window@@UAEXABVAllSettings@@E@Z
?SetPosSizePixel@Window@@UAEXABVPoint@@ABVSize@@@Z
?SetPosSizePixel@Window@@UAEXJJJJG@Z
?SetPosPixel@Window@@UAEXABVPoint@@@Z
?GetPosPixel@Window@@UBE?AVPoint@@XZ
?SetSizePixel@Window@@UAEXABVSize@@@Z
?GetSizePixel@Window@@UBE?AVSize@@XZ
?SetOutputSizePixel@Window@@UAEXABVSize@@@Z
?IsScrollable@Window@@UBEEXZ
?Scroll@Window@@UAEXJJABVRectangle@@G@Z
?Scroll@Window@@UAEXJJG@Z
?Invalidate@Window@@UAEXABVRegion@@G@Z
?Invalidate@Window@@UAEXABVRectangle@@G@Z
?Invalidate@Window@@UAEXG@Z
?SetText@Window@@UAEXABVString@@@Z
?GetText@Window@@UBE?AVString@@XZ
?GetDisplayText@Window@@UBE?AVString@@XZ
?GetDisplayBackground@Window@@UBEABVWallpaper@@XZ
?GetComponentInterface@Window@@UAE?AV?$Reference@VXWindowPeer@awt@star@sun@com@@@uno@star@sun@com@@E@Z
?SetComponentInterface@Window@@UAEXV?$Reference@VXWindowPeer@awt@star@sun@com@@@uno@star@sun@com@@@Z
?CreateAccessible@Window@@UAE?AV?$Reference@VXAccessible@accessibility@star@sun@com@@@uno@star@sun@com@@XZ
?GetParentLabelFor@Window@@UBEPAV1@PBV1@@Z
?GetParentLabeledBy@Window@@UBEPAV1@PBV1@@Z
?GetDropTarget@Window@@UAE?AV?$Reference@VXDropTarget@dnd@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetDragSource@Window@@UAE?AV?$Reference@VXDragSource@dnd@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetDragGestureRecognizer@Window@@UAE?AV?$Reference@VXDragGestureRecognizer@dnd@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetClipboard@Window@@UAE?AV?$Reference@VXClipboard@clipboard@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetPrimarySelection@Window@@UAE?AV?$Reference@VXClipboard@clipboard@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetOptimalSize@Window@@UBE?AVSize@@W4WindowSizeType@@@Z
?GetSurroundingText@Window@@UBE?AVString@@XZ
?GetSurroundingTextSelection@Window@@UBE?AVSelection@@XZ
?Close@Dialog@@UAEEXZ
?TitleButtonClick@SystemWindow@@UAEXG@Z
?Pin@SystemWindow@@UAEXXZ
?Roll@SystemWindow@@UAEXXZ
?Resizing@SystemWindow@@UAEXAAVSize@@@Z
?Execute@Dialog@@UAEFXZ
?StartExecuteModal@Dialog@@UAEXABVLink@@@Z
?EndDialog@Dialog@@QAEXJ@Z
?ConvertDoubleValue@MetricField@@SANNGW4FieldUnit@@W4MapUnit@@@Z
?Check@RadioButton@@QAEXE@Z
?SetUnit@MetricFormatter@@QAEXW4FieldUnit@@@Z
?SetDefaultUnit@MetricField@@SAXW4FieldUnit@@@Z
??0MetricField@@QAE@PAVWindow@@ABVResId@@@Z
??0FixedText@@QAE@PAVWindow@@ABVResId@@@Z
??0FixedLine@@QAE@PAVWindow@@ABVResId@@@Z
??0RadioButton@@QAE@PAVWindow@@ABVResId@@@Z
??0HelpButton@@QAE@PAVWindow@@ABVResId@@@Z
??0CancelButton@@QAE@PAVWindow@@ABVResId@@@Z
??0OKButton@@QAE@PAVWindow@@ABVResId@@@Z
??0ModalDialog@@QAE@PAVWindow@@ABVResId@@@Z
?MouseButtonDown@Window@@UAEXABVMouseEvent@@@Z
?MouseMove@Window@@UAEXABVMouseEvent@@@Z
?SetRelativeMapMode@OutputDevice@@UAEXABVMapMode@@@Z
?SetMapMode@OutputDevice@@UAEXXZ
?SetSettings@Window@@UAEXABVAllSettings@@@Z
??1Control@@UAE@XZ
??1MetricField@@UAE@XZ
??1RadioButton@@UAE@XZ
??1PushButton@@UAE@XZ
??1Dialog@@UAE@XZ
?Enable@Window@@QAEX_N0@Z
?GetType@Graphic@@QBE?AW4GraphicType@@XZ
?GetGDIMetaFile@Graphic@@QBEABVGDIMetaFile@@XZ
?Record@GDIMetaFile@@QAEXPAVOutputDevice@@@Z
?DrawBitmap@OutputDevice@@QAEXABVPoint@@ABVBitmap@@@Z
?Stop@GDIMetaFile@@QAEXXZ
??0MapMode@@QAE@W4MapUnit@@@Z
?GetAlign@Font@@QBE?AW4TextAlign@@XZ
??0VirtualDevice@@QAE@G@Z
?GetFontMetric@OutputDevice@@QBE?AVFontMetric@@ABVFont@@@Z
?GetAscent@FontMetric@@QBEJXZ
?GetDescent@FontMetric@@QBEJXZ
??1FontInfo@@QAE@XZ
??1VirtualDevice@@UAE@XZ
?GetTextArray@OutputDevice@@QBEJABVString@@PAJGG@Z
?GetSizePixel@Bitmap@@QBE?AVSize@@XZ
?Crop@Bitmap@@QAEEABVRectangle@@@Z
??0GraphicConversionParameters@@QAE@ABVSize@@_N11@Z
??0Graphic@@QAE@ABVBitmapEx@@@Z
?GetBitmap@Graphic@@QBE?AVBitmap@@ABVGraphicConversionParameters@@@Z
??1Graphic@@UAE@XZ
??0GDIMetaFile@@QAE@ABV0@@Z
??0GDIMetaFile@@QAE@XZ
?SetMapMode@OutputDevice@@UAEXABVMapMode@@@Z
?AddGradientActions@OutputDevice@@QAEXABVRectangle@@ABVGradient@@AAVGDIMetaFile@@@Z
??1GDIMetaFile@@UAE@XZ
?AddHatchActions@OutputDevice@@QAEXABVPolyPolygon@@ABVHatch@@AAVGDIMetaFile@@@Z
?SetColor@Font@@QAEXABVColor@@@Z
?SetFillColor@Font@@QAEXABVColor@@@Z
??8MapMode@@QBEEABV0@@Z
??0MapMode@@QAE@ABV0@@Z
?SetOrigin@MapMode@@QAEXABVPoint@@@Z
?SetScaleX@MapMode@@QAEXABVFraction@@@Z
?SetScaleY@MapMode@@QAEXABVFraction@@@Z
??4MapMode@@QAEAAV0@ABV0@@Z
??4Font@@QAEAAV0@ABV0@@Z
?Scale@GDIMetaFile@@QAEXNN@Z
?Move@GDIMetaFile@@QAEXJJ@Z
??0Bitmap@@QAE@ABV0@@Z
??1Bitmap@@QAE@XZ
?AcquireReadAccess@Bitmap@@QAEPAVBitmapReadAccess@@XZ
?GetBitCount@Bitmap@@QBEGXZ
?GetPixel@BitmapReadAccess@@QBE?AVBitmapColor@@JJ@Z
??BBitmapColor@@QBE?AVColor@@XZ
?GetPaletteEntryCount@BitmapReadAccess@@QBEGXZ
?ReleaseAccess@Bitmap@@QAEXPAVBitmapReadAccess@@@Z
?GetSettings@Application@@SAABVAllSettings@@XZ
?GetUILocale@AllSettings@@QBEABULocale@lang@star@sun@com@@XZ
??1MapMode@@QAE@XZ
??1Font@@QAE@XZ
??0Font@@QAE@XZ
??0MapMode@@QAE@XZ
?applyToB2DPolyPolygon@LineInfo@@QBEXAAVB2DPolyPolygon@basegfx@@0@Z
?GetColor@Font@@QBEABVColor@@XZ
?GetFillColor@Font@@QBEABVColor@@XZ
?GetSize@Font@@QBEABVSize@@XZ
?GetFamily@Font@@QBE?AW4FontFamily@@XZ
?GetName@Font@@QBEABVString@@XZ
?GetWeight@Font@@QBE?AW4FontWeight@@XZ
?GetItalic@Font@@QBE?AW4FontItalic@@XZ
?GetUnderline@Font@@QBE?AW4FontUnderline@@XZ
?IsOutline@Font@@QBEEXZ
?IsShadow@Font@@QBEEXZ
?LogicToLogic@OutputDevice@@SA?AVSize@@ABV2@ABVMapMode@@1@Z
?LogicToLogic@OutputDevice@@SA?AVPoint@@ABV2@ABVMapMode@@1@Z
?Activate@Window@@UAEXXZ

svtmi

??0FilterConfigItem@@QAE@ABVOUString@rtl@@PAV?$Sequence@UPropertyValue@beans@star@sun@com@@@uno@star@sun@com@@@Z
?ReadInt32@FilterConfigItem@@QAEJABVOUString@rtl@@J@Z
?ReadSize@FilterConfigItem@@QAE?AUSize@awt@star@sun@com@@ABVOUString@rtl@@ABU23456@@Z
?WriteInt32@FilterConfigItem@@QAEXABVOUString@rtl@@J@Z
?WriteSize@FilterConfigItem@@QAEXABVOUString@rtl@@ABUSize@awt@star@sun@com@@@Z
?GetFilterData@FilterConfigItem@@QBE?AV?$Sequence@UPropertyValue@beans@star@sun@com@@@uno@star@sun@com@@XZ
??1FilterConfigItem@@QAE@XZ
?GetStatusIndicator@FilterConfigItem@@QBE?AV?$Reference@VXStatusIndicator@task@star@sun@com@@@uno@star@sun@com@@XZ

cppu3

typelib_static_sequence_type_init
uno_type_destructData
uno_type_sequence_assign
typelib_static_type_init

sal3

rtl_uString_release
osl_getThreadTextEncoding
rtl_uString_new
rtl_uString_acquire

basegfxmi

?count@B2DPolyPolygon@basegfx@@QBEKXZ
??0B2DPolyPolygon@basegfx@@QAE@XZ
??0B2DPolyPolygon@basegfx@@QAE@ABVB2DPolygon@1@@Z
?getDefaultAdaptiveSubdivision@B2DPolyPolygon@basegfx@@QBE?AV12@XZ
?append@B2DPolygon@basegfx@@QAEXABVB2DPoint@2@@Z
??0B2DPolygon@basegfx@@QAE@XZ
??4B2DPolyPolygon@basegfx@@QAEAAV01@ABV01@@Z
??1B2DPolyPolygon@basegfx@@QAE@XZ
?getB2DPolygon@B2DPolyPolygon@basegfx@@QBE?AVB2DPolygon@2@K@Z
?isClosed@B2DPolygon@basegfx@@QBE_NXZ
?getB2DPoint@B2DPolygon@basegfx@@QBE?AVB2DPoint@2@K@Z
??1B2DPolygon@basegfx@@QAE@XZ
?getDefaultAdaptiveSubdivision@B2DPolygon@basegfx@@QBE?AV12@XZ
?count@B2DPolygon@basegfx@@QBEKXZ

msvcr90

_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_encode_pointer
_CIsqrt
??2@YAPAXI@Z
memset
??_U@YAPAXI@Z
??_V@YAXPAX@Z
??3@YAXPAX@Z
_CIatan2
_onexit

kernel32

InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime

Exports

Exports

DoExportDialog
GetVersionInfo
GraphicExport

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1077fed10e09b2956cc62183940b2dbc

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

tlmi

vclmi

svtmi

cppu3

sal3

basegfxmi

msvcr90

kernel32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB