5a042d503de3f6e63dd0b0392ac60acc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5a042d503de3f6e63dd0b0392ac60acc_JaffaCakes118
Size

177KB
MD5

5a042d503de3f6e63dd0b0392ac60acc
SHA1

d095f9624980ffb64ae69d2335d67df3d3ad31f0
SHA256

7f6356c5488a7c23d25da35798177423cc21503cb8657adb87d2aace277500a4
SHA512

0b73aaa6fafae3dd623f84584650e51213547bfd8ed42b3ad164f1f81d26bb202056947a010d2b310f230f0ddc647eedbbf44da2b9f273f0f5eb9e52948dcd76
SSDEEP

3072:euLN6LQ9kzfQdOiwi2aI97bx9V85eWu0XFGnLtQwcIAd3qUdamAwn+vQZy5hpS:lPGzfliDPIdxU5i0XUJAFxhln+Yk8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a042d503de3f6e63dd0b0392ac60acc_JaffaCakes118

Files

5a042d503de3f6e63dd0b0392ac60acc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d5f4ab56132d1cb526325f9d7c31469d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

xul

??0nsSupportsWeakReference@@QAE@XZ
?assign_from_gs_contractid_with_error@nsCOMPtr_base@@QAEXABVnsGetServiceByContractIDWithError@@ABUnsID@@@Z
?assign_from_helper@nsCOMPtr_base@@QAEXABVnsCOMPtr_helper@@ABUnsID@@@Z
?assign_from_qi_with_error@nsCOMPtr_base@@QAEXABVnsQueryInterfaceWithError@@ABUnsID@@@Z
?assign_from_gs_contractid@nsCOMPtr_base@@QAEXVnsGetServiceByContractID@@ABUnsID@@@Z
?SetLength@nsAString_internal@@QAEXI@Z
PL_DHashTableOperate
PL_DHashFinalizeStub
PL_DHashClearEntryStub
?assign_from_qi@nsCOMPtr_base@@QAEXVnsQueryInterface@@ABUnsID@@@Z
PL_DHashVoidPtrKeyStub
PL_DHashFreeTable
PL_DHashAllocTable
?NS_NewGenericModule2@@YAIPBUnsModuleInfo@@PAPAVnsIModule@@@Z
?EnsureMutable@nsSubstring@@IAEXXZ
?Replace@nsCSubstring@@QAEXIIPBDI@Z
?Assign@nsCSubstring@@QAEXPBDI@Z
?assign_from_gs_cid_with_error@nsCOMPtr_base@@QAEXABVnsGetServiceByCIDWithError@@ABUnsID@@@Z
PL_DHashTableInit
PL_DHashTableFinish
??1nsSupportsWeakReference@@IAE@XZ
??0nsGetInterface@@QAE@PAVnsISupports@@PAI@Z
?GetWeakReference@nsSupportsWeakReference@@UAGIPAPAVnsIWeakReference@@@Z
NS_Free_P
?sEmptyBuffer@?$nsCharTraits@D@@2PBDB
?Adopt@nsSubstring@@QAEXPAGI@Z
?sEmptyBuffer@?$nsCharTraits@G@@2PBGB
??1nsACString_internal@@QAE@XZ
??1nsAString_internal@@QAE@XZ
?SetLength@nsSubstring@@QAEXI@Z
?sCanonicalVTable@nsObsoleteACString@@2PBXB
?sCanonicalVTable@nsObsoleteAString@@2PBXB
?Assign@nsAString_internal@@QAEXPBG@Z
?assign_with_AddRef@nsCOMPtr_base@@QAEXPAVnsISupports@@@Z
?Assign@nsAString_internal@@QAEXABV1@@Z
PL_DHashMoveEntryStub
??1nsCOMPtr_base@@QAE@XZ

nspr4

PR_NewLogModule
PR_AtomicDecrement
PR_AtomicIncrement
PR_LogPrint

msvcr71

_onexit
_except_handler3
__CppXcptFilter
_adjust_fdiv
malloc
_initterm
free
??2@YAPAXI@Z
_purecall
??3@YAXPAX@Z
__dllonexit

kernel32

DisableThreadLibraryCalls

Exports

Exports

NSGetModule

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 157KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5f4ab56132d1cb526325f9d7c31469d

Headers

File Characteristics

Imports

xul

nspr4

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 84B

.rsrc Size: 1024B - Virtual size: 896B

.reloc Size: 1KB - Virtual size: 1KB

.text Size: 157KB - Virtual size: 160KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 84B

.rsrc
Size: 1024B - Virtual size: 896B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 157KB - Virtual size: 160KB