64402083f299f380c0ba81e344de5d7d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

64402083f299f380c0ba81e344de5d7d_JaffaCakes118
Size

185KB
MD5

64402083f299f380c0ba81e344de5d7d
SHA1

aa34f5f7d2ce0d21918bbe7e3c0ed4213b4ffcc3
SHA256

8343ecb6fb0067d8eebdc9ac9c107b34b9432e3fc789c0f1db7c51c9f026cc58
SHA512

d73abc4f2602c57ca0569f8452cad5d0a3eef93a55d9c555144755e4aadcccc9a9fe6b49afce880fa34ec2c37fd426ef21077b175a04d88a636197e4545d605b
SSDEEP

3072:3HRGKNxDjT58snJIBpZai1qRJkr48kIdP5uH6jks1Y2RP/t2VhhrMz96v/pTzWje:3HRGKNhjT58snuBHa30VBB1RihhK96v6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64402083f299f380c0ba81e344de5d7d_JaffaCakes118

Files

64402083f299f380c0ba81e344de5d7d_JaffaCakes118
.dll windows:5 windows x86 arch:x86

3226a698b49a57fcdd2a69b1157318fa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\Work\OSSBuild\Build\Windows\Win32\Release\pdb\plugins\libgstdshowdecwrapper.pdb

Imports

libgstreamer-0.10

gst_element_class_set_details
gst_element_class_get_pad_template
gst_element_get_type
gst_structure_get_value
gst_mini_object_ref
gst_pad_set_caps
_gst_element_error_printf
gst_object_unref
gst_caps_unref
gst_mini_object_unref
gst_debug_log
gst_caps_set_simple
gst_pad_set_setcaps_function
gst_pad_set_chain_function
gst_element_register
gst_pad_set_event_function
gst_element_add_pad
gst_element_class_add_pad_template
gst_segment_set_newsegment
gst_element_message_full
gst_pad_alloc_buffer
gst_caps_new_simple
gst_value_get_mini_object
gst_pad_event_default
gst_object_get_parent
gst_segment_clip
__gst_debug_min
gst_caps_from_string
gst_pad_template_new
gst_util_uint64_scale_int
gst_event_parse_new_segment
_gst_debug_category_new
gst_stream_error_quark
gst_flow_get_name
gst_buffer_set_caps
_gst_debug_register_funcptr
gst_pad_new_from_template
gst_caps_get_structure
gst_buffer_create_sub
gst_structure_get_int
gst_segment_new
gst_core_error_quark
gst_fraction_range_get_type
gst_fraction_get_type
gst_value_get_fraction_numerator
gst_int_range_get_type
gst_value_get_fraction_denominator
gst_segment_free
gst_pad_push

libglib-2.0-0

g_strdup_printf
g_malloc0
g_free
g_strdup

libgobject-2.0-0

g_type_register_static
g_type_class_peek_parent
g_type_check_instance_cast
g_type_check_class_cast

msvcrt

_adjust_fdiv
_initterm
free
malloc
_XcptFilter
_onexit
_lock
__dllonexit
_unlock
memcpy
memset
strstr
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
__CxxFrameHandler
_amsg_exit
??1type_info@@UAE@XZ

winmm

timeBeginPeriod
timeEndPeriod
timeSetEvent
timeKillEvent

kernel32

DeleteCriticalSection
InitializeCriticalSection
RtlUnwind
InterlockedExchange
Sleep
InterlockedCompareExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
EnterCriticalSection
LeaveCriticalSection
SetEvent
ResetEvent
lstrcmpW
WaitForMultipleObjects
InterlockedIncrement
FreeLibrary
InterlockedDecrement
LoadLibraryA
CloseHandle
CreateEventA
GetProcAddress
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetLastError
GetVersionExA

user32

PeekMessageA
DispatchMessageA
PostThreadMessageA
GetQueueStatus
MsgWaitForMultipleObjects
RegisterWindowMessageA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoCreateInstance
CoFreeUnusedLibraries

Exports

Exports

gst_plugin_desc

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3226a698b49a57fcdd2a69b1157318fa

Headers

File Characteristics

PDB Paths

Imports

libgstreamer-0.10

libglib-2.0-0

libgobject-2.0-0

msvcrt

winmm

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 55KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 99KB - Virtual size: 98KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 55KB - Virtual size: 55KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 99KB - Virtual size: 98KB

.reloc
Size: 8KB - Virtual size: 7KB