5cc0129bc95c8d733625cc8869c3b320_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5cc0129bc95c8d733625cc8869c3b320_JaffaCakes118
Size

198KB
MD5

5cc0129bc95c8d733625cc8869c3b320
SHA1

0b5d6ec213c174be2b395aaf8f0988dc79124886
SHA256

646c1b840bc39d3842e019c291d40e553bccc50b1aab83787e4722581149ee80
SHA512

bf39d264021831ff22c6375b52a10c8c0eeffe166d2eb5956ebfa14f1284a4f5f439788e2eebd1a99e3c6743a32568bd4160ba654183d918cdc5c21b323fb1d9
SSDEEP

6144:QXhoG16at4HPlwOQiVy4wuQtDL3qSgcGK9L:Quc6jvlwOQYwuILvgc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cc0129bc95c8d733625cc8869c3b320_JaffaCakes118

Files

5cc0129bc95c8d733625cc8869c3b320_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8c2a3ee322f568609863f11f96b7af10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

gdi32

GetStockObject

kernel32

AddAtomA
EnterCriticalSection
FindAtomA
FreeLibrary
GetAtomNameA
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetVersionExA
LeaveCriticalSection
LoadLibraryA
ReleaseMutex
WaitForSingleObject

msvcrt

_strdup
__dllonexit
_assert
_errno
abort
fflush
free
malloc
memcpy
memset
realloc
tolower

shell32

ExtractIconA

user32

AdjustWindowRect
AppendMenuA
CheckMenuItem
ClientToScreen
CreateWindowExA
DefWindowProcA
DestroyIcon
DestroyWindow
DispatchMessageA
EqualRect
GetClassInfoA
GetClientRect
GetCursorPos
GetKeyState
GetMessageA
GetSystemMenu
GetWindowLongA
GetWindowPlacement
IntersectRect
LoadCursorA
MapVirtualKeyA
OffsetRect
PostMessageA
PostQuitMessage
RegisterClassA
SetForegroundWindow
SetParent
SetRectEmpty
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowTextA
ShowCursor
ShowWindow
SystemParametersInfoA
TranslateMessage
WindowFromPoint

libvlc

__msg_Generic
__var_Create
__var_Get
__var_Set
__vlc_mutex_destroy
__vlc_mutex_init
__vlc_object_attach
__vlc_object_create
__vlc_object_destroy
__vlc_object_detach
__vlc_object_find
__vlc_object_release
__vlc_thread_create
__vlc_thread_join
__vlc_thread_ready
config_Duplicate
mdate
playlist_LockControl
vlc_dgettext
vout_ControlWindow
vout_PlacePicture
vout_ReleaseWindow
vout_RequestWindow
vout_vaControlDefault

Exports

Exports

vlc_entry__0_8_6

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 224B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c2a3ee322f568609863f11f96b7af10

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

shell32

user32

libvlc

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 1024B - Virtual size: 560B

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: - Virtual size: 224B

.edata Size: 512B - Virtual size: 90B

.idata Size: 171KB - Virtual size: 170KB

.reloc Size: 1024B - Virtual size: 800B

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 1024B - Virtual size: 560B

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: - Virtual size: 224B

.edata
Size: 512B - Virtual size: 90B

.idata
Size: 171KB - Virtual size: 170KB

.reloc
Size: 1024B - Virtual size: 800B