7775e514d363515b4cf2f0f2b3e98b95_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7775e514d363515b4cf2f0f2b3e98b95_JaffaCakes118
Size

21KB
MD5

7775e514d363515b4cf2f0f2b3e98b95
SHA1

4a7b99195811c93893c4325e1cd180a15693f587
SHA256

9fdd69317aad7503d4ce6e6c27c496240fd969a335d320826a7735d118da3a31
SHA512

1136702a7c8fbc98f5a781a972fea310ab7534827b6f8187f2f17dea61f9c26a8f2ddf17859816c89765efd978ca02002cc23fbb97ccb8004e9d8e20baee3b82
SSDEEP

384:9E/YpGkj4SIslbbP4P3PkNBpSpe1aeAuVc0Z:9EN1Lslc/Sup8A1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7775e514d363515b4cf2f0f2b3e98b95_JaffaCakes118

Files

7775e514d363515b4cf2f0f2b3e98b95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9065f395e95fa0eb998e369419221de3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libopenfoam

_ZN4Foam10FatalErrorE
_ZN4Foam11openLibraryERKNS_8fileNameE
_ZN4Foam13messageStreamcvRNS_8OSstreamEEv
_ZN4Foam4InfoE
_ZN4Foam4Time15controlDictNameE
_ZN4Foam4Time4loopEv
_ZN4Foam4TimeC1ERKNS_4wordERKNS_8fileNameES6_S3_S3_
_ZN4Foam4TimeD1Ev
_ZN4Foam4word5debugE
_ZN4Foam5error4exitEi
_ZN4Foam5error5abortEv
_ZN4Foam5errorclEPKcS2_i
_ZN4Foam6string14removeRepeatedEc
_ZN4Foam6string14removeTrailingEc
_ZN4Foam7argListC1ERiRPPcbb
_ZN4Foam7argListD1Ev
_ZN4Foam8IOobjectC1ERKNS_4wordERKNS_8fileNameERKNS_14objectRegistryENS0_10readOptionENS0_11writeOptionEb
_ZN4Foam8IOobjectD1Ev
_ZN4Foam8fileName5debugE
_ZN4Foam8polyMesh13defaultRegionE
_ZN4FoamlsERNS_7OstreamEPKc
_ZN4FoamlsERNS_7OstreamERKNS_4wordE
_ZN4FoamlsERNS_7OstreamEc
_ZN4FoamlsERNS_7OstreamEd
_ZN4FoamlsERNS_7OstreamEl
_ZNK4Foam11regIOobject5writeEv
_ZNK4Foam13primitiveMesh9checkMeshEb
_ZNK4Foam4Time8timeNameEv
_ZNK4Foam5clock16elapsedClockTimeEv
_ZNK4Foam7argList13checkRootCaseEv
_ZNK4Foam7cpuTime14elapsedCpuTimeEv
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam8fileName5debugE
_ZN4Foam8fileName5debugE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4word5debugE
_ZN4Foam4word5debugE
_ZN4Foam4word5debugE
_ZN4Foam4word5debugE
_ZN4Foam4Time15controlDictNameE
_ZN4Foam8polyMesh13defaultRegionE

libdynamicfvmesh

_ZN4Foam13dynamicFvMesh3NewERKNS_8IOobjectE

libgcc_s_sjlj-1

_Unwind_SjLj_Register
_Unwind_SjLj_Resume
_Unwind_SjLj_Unregister

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_iob
_lock
_onexit
_unlock
abort
calloc
exit
fprintf
free
fwrite
malloc
memcpy
signal
strlen
vfprintf

libstdc++-6

_ZNKSt5ctypeIcE13_M_widen_initEv
_ZNSo3putEc
_ZNSo5flushEv
_ZNSolsEi
_ZNSs12_M_leak_hardEv
_ZNSs4_Rep10_M_destroyERKSaIcE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs6resizeEjc
_ZNSsC2EPKcRKSaIcE
_ZNSsC2ERKSs
_ZNSsD2Ev
_ZNSt8ios_base4InitC1Ev
_ZNSt8ios_base4InitD1Ev
_ZNSt9basic_iosIcSt11char_traitsIcEE5clearESt12_Ios_Iostate
_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_i
_ZSt16__throw_bad_castv
_ZSt4cerr
_ZSt4endlIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_
_ZStlsISt11char_traitsIcEERSt13basic_ostreamIcT_ES5_PKc
__gxx_personality_sj0
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9065f395e95fa0eb998e369419221de3

Headers

File Characteristics

Imports

libopenfoam

libdynamicfvmesh

libgcc_s_sjlj-1

kernel32

msvcrt

libstdc++-6

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 24B

.bss Size: - Virtual size: 1KB

.idata Size: 5KB - Virtual size: 5KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 24B

.bss
Size: - Virtual size: 1KB

.idata
Size: 5KB - Virtual size: 5KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 1KB - Virtual size: 1KB