462f3898e806a41523eaed3cb93be070_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

462f3898e806a41523eaed3cb93be070_JaffaCakes118
Size

152KB
MD5

462f3898e806a41523eaed3cb93be070
SHA1

0b79f2012fba317cd97479fd04551d6c058e81e0
SHA256

77a38887d90af1f7da52d5221bd25c27e185b18a0cff4a8dea6ce65928509339
SHA512

cdd81c356bfc98e732c681a367da209f4a3676d4265313a708e6c9bbe1929a2d63d81df21a9dc27dd7fb8da6f0ac54b6de29d088f4daf7344305873708a28e72
SSDEEP

3072:HnECwuIJQCylOgK3BpeIFciV3jU4nEvlTaPxpg0Vi8KGLYoLX:HEGHIKIFc0N4kEc1nz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
462f3898e806a41523eaed3cb93be070_JaffaCakes118

Files

462f3898e806a41523eaed3cb93be070_JaffaCakes118
.dll windows:4 windows x86 arch:x86

49ddf5a2f0de65653f288f6a701bc67b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\BUILD_AREA\jdk6\control\build\windows-i586\tmp\sun\java.util.zip\zip\obj\zip.pdb

Imports

java

_JNU_ThrowIOExceptionWithLastError@8
_JNU_ThrowIllegalArgumentException@8
_JNU_ThrowInternalError@8
_JNU_ThrowNullPointerException@8
_JNU_ThrowByName@12
JNU_NewObjectByName
_JNU_NewStringPlatform@8
jio_fprintf
handleRead
handleLseek
_JNU_ThrowOutOfMemoryError@8
_JNU_GetStringPlatformChars@12
winFileHandleOpen
_JNU_ReleaseStringPlatformChars@12

jvm

_JVM_RawMonitorExit@4
_JVM_RawMonitorEnter@4
_JVM_NativePath@4
_JVM_RawMonitorDestroy@4
_JVM_GetLastErrorString@8
_JVM_RawMonitorCreate@0

msvcr71

malloc
_onexit
__dllonexit
_except_handler3
__CppXcptFilter
_adjust_fdiv
_initterm
strerror
_iob
strlen
strcpy
strcmp
realloc
memset
memcpy
sprintf
_errno
free
calloc
_strdup
_assert

kernel32

DisableThreadLibraryCalls
CloseHandle
CreateFileA

Exports

Exports

ZIP_CRC32
ZIP_Close
ZIP_FindEntry
ZIP_GetNextEntry
ZIP_Open
ZIP_ReadEntry
_Java_java_util_jar_JarFile_getMetaInfEntryNames@8
_Java_java_util_zip_Adler32_update@16
_Java_java_util_zip_Adler32_updateBytes@24
_Java_java_util_zip_CRC32_update@16
_Java_java_util_zip_CRC32_updateBytes@24
_Java_java_util_zip_Deflater_deflateBytes@20
_Java_java_util_zip_Deflater_end@16
_Java_java_util_zip_Deflater_getAdler@16
_Java_java_util_zip_Deflater_getBytesRead@16
_Java_java_util_zip_Deflater_getBytesWritten@16
_Java_java_util_zip_Deflater_init@20
_Java_java_util_zip_Deflater_initIDs@8
_Java_java_util_zip_Deflater_reset@16
_Java_java_util_zip_Deflater_setDictionary@28
_Java_java_util_zip_Inflater_end@16
_Java_java_util_zip_Inflater_getAdler@16
_Java_java_util_zip_Inflater_getBytesRead@16
_Java_java_util_zip_Inflater_getBytesWritten@16
_Java_java_util_zip_Inflater_inflateBytes@20
_Java_java_util_zip_Inflater_init@12
_Java_java_util_zip_Inflater_initIDs@8
_Java_java_util_zip_Inflater_reset@16
_Java_java_util_zip_Inflater_setDictionary@28
_Java_java_util_zip_ZipEntry_initFields@16
_Java_java_util_zip_ZipEntry_initIDs@8
_Java_java_util_zip_ZipFile_close@16
_Java_java_util_zip_ZipFile_freeEntry@24
_Java_java_util_zip_ZipFile_getCSize@16
_Java_java_util_zip_ZipFile_getEntry@24
_Java_java_util_zip_ZipFile_getMethod@16
_Java_java_util_zip_ZipFile_getNextEntry@20
_Java_java_util_zip_ZipFile_getSize@16
_Java_java_util_zip_ZipFile_getTotal@16
_Java_java_util_zip_ZipFile_getZipMessage@16
_Java_java_util_zip_ZipFile_initIDs@8
_Java_java_util_zip_ZipFile_open@24
_Java_java_util_zip_ZipFile_read@44

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

49ddf5a2f0de65653f288f6a701bc67b

Headers

File Characteristics

PDB Paths

Imports

java

jvm

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 1KB - Virtual size: 1KB

.text Size: 106KB - Virtual size: 108KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 106KB - Virtual size: 108KB