840ae9941c03975722db0cf09b086509_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

840ae9941c03975722db0cf09b086509_JaffaCakes118
Size

27KB
MD5

840ae9941c03975722db0cf09b086509
SHA1

2ce92012b675b9844ca17652bc5f8e5a64f6809a
SHA256

405e6014d0ef167b95e2211e71a28d7d5c7d4d66c235917a9a78bc962ff20e0b
SHA512

2b263a66a79290feb91a9995b4acd02993ef483c47741a869421f2dd0dd40d8ed9c73345700b993426aab63868d740366bda74f66965f0c9c61cb02d2929c81b
SSDEEP

384:Zr7LPrPQJSSu+eiX8I9QCMJw8HThDlYGqF17yduIOtn20tBjBjzv9:RgDQCCweh5YGqP7yHOtv9jzv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
840ae9941c03975722db0cf09b086509_JaffaCakes118

Files

840ae9941c03975722db0cf09b086509_JaffaCakes118
.dll windows:5 windows x86 arch:x86

c6dea0da920b81814fcd2f6a5366037a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\sj\nightly\11.1\173\w32\acds\quartus\pdb32\mmdl_altecc.pdb

Imports

mlib_int

??1MLIB_UINTEGER@@QAE@XZ
??4MLIB_UINTEGER@@QAEAAV0@ABV0@@Z
??_FMLIB_UINTEGER@@QAEXXZ
??0MLIB_UINTEGER@@QAE@II@Z
?set_bit@MLIB_UINTEGER@@QAEAAV1@HI@Z
?bit@MLIB_UINTEGER@@QBEII@Z
??9MLIB_UINTEGER@@QBE_NABV0@@Z
??8MLIB_UINTEGER@@QBE_NI@Z
??4MLIB_UINTEGER@@QAEAAV0@I@Z
?bitwidth@MLIB_UINTEGER@@QAEAAV1@I@Z
?force_x@MLIB_UINTEGER@@QAEAAV1@XZ
??0MLIB_UINTEGER@@QAE@ABV0@@Z

mmdl_base

?get_integer_parameter_definition@MDL_BASE@@QAEPAUMMDL_INTEGER_PARAMETER_BASE@@XZ
?get_string_parameter_definition@MDL_BASE@@QAEPAUMMDL_STRING_PARAMETER_BASE@@XZ
?get_port_definition@MDL_BASE@@QAEPAUMMDL_PORT_BASE@@XZ
?add_port_to_model@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@_NHW4MMDL_PORT_TYPE@@@Z
?add_integer_parameter_to_model@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@H@Z
?add_string_parameter_to_model@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@0@Z
?set_port_value@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@0@Z
?update_past_port_values@MDL_BASE@@QAEXXZ
?reset_model@MDL_BASE@@QAEXXZ
??4MDL_BASE@@QAEAAV0@ABV0@@Z
?test_case_is_valid@MDL_BASE@@UAE_NXZ
??0MDL_BASE@@QAE@ABV0@@Z
??1MDL_BASE@@QAE@XZ
?get_element@MDL_PARAMETER@@QAEPAVMDL_PARAMETER_ELEMENT@@ABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?set_initial_port_value@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@0@Z
?get_port_value@MDL_BASE@@QAEPBDABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?get_buried_port_value@MDL_BASE@@QAEPBDABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?set_port_value@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@PAVMLIB_UINTEGER@@@Z
?set_initial_port_value@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@PAVMLIB_UINTEGER@@@Z
?get_port_value_as_mlib_int@MDL_BASE@@QAEPAVMLIB_UINTEGER@@ABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?get_buried_port_value_as_mlib_int@MDL_BASE@@QAEPAVMLIB_UINTEGER@@ABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
??0MDL_BASE@@QAE@ABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?get_string_parameter_value@MDL_BASE@@QAE?AV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@ABV23@@Z
?get_integer_parameter_value@MDL_BASE@@QAEHABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?get_element@MDL_PORT@@QAEPAVMDL_PORT_ELEMENT@@ABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@@Z
?add_port_to_model@MDL_BASE@@QAEXABV?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@_NH@Z

dinkum_alt

??1?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@QAE@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@_Dinkum_std@@V?$allocator@D@2@@_Dinkum_std@@QAE@XZ

msvcr90

_crt_debugger_hook
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_encode_pointer
?terminate@@YAXXZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??_V@YAXPAX@Z
__CxxFrameHandler3

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange

Exports

Exports

??0MDL_ALTECC@@QAE@ABV0@@Z
??0MDL_ALTECC@@QAE@XZ
??1MDL_ALTECC@@QAE@XZ
??4MDL_ALTECC@@QAEAAV0@ABV0@@Z
??_7MDL_ALTECC@@6B@
?aclr@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?align_decoder_output_bit@MDL_ALTECC@@IAEXXZ
?align_encoder_output_bit@MDL_ALTECC@@IAEXAB_N@Z
?check_extra_parity_bit@MDL_ALTECC@@IAE_NXZ
?clock@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?clock_rising_and_enabled@MDL_ALTECC@@IAE_NXZ
?clocken@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?convert_codeword_into_vector_without_extra_parity@MDL_ALTECC@@IAEXXZ
?convert_dataword_into_vector@MDL_ALTECC@@IAEXXZ
?data@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?decode_data@MDL_ALTECC@@IAEXXZ
?encode_data@MDL_ALTECC@@IAEXXZ
?err_corrected@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?err_detected@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?err_fatal@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?evaluate_current_result@MDL_ALTECC@@IAEXXZ
?evaluate_model@MDL_ALTECC@@UAEXXZ
?form_check_matrix@MDL_ALTECC@@IAEXH@Z
?form_codeword_vector@MDL_ALTECC@@IAEXXZ
?form_generator_matrix@MDL_ALTECC@@IAEXH@Z
?form_identity_matrix@MDL_ALTECC@@IAEXH@Z
?form_mapping_matrix@MDL_ALTECC@@IAEXH@Z
?form_parity_check_matrix@MDL_ALTECC@@IAEXH@Z
?form_syndrome_vector@MDL_ALTECC@@IAEXH@Z
?get_decimal_value_of_each_column_of_parity_check_matrix@MDL_ALTECC@@IAEXXZ
?get_syndrome_vector_value@MDL_ALTECC@@IAEHXZ
?init_sim_model@MDL_ALTECC@@UAEXXZ
?locate_error@MDL_ALTECC@@IAEHH@Z
?lpm_pipeline_parameter@MDL_ALTECC@@IAEPAVMDL_PARAMETER_ELEMENT@@XZ
?lpm_type_parameter@MDL_ALTECC@@IAEPAVMDL_PARAMETER_ELEMENT@@XZ
?q@MDL_ALTECC@@IAEPAVMDL_PORT_ELEMENT@@XZ
?set_extra_parity_bit@MDL_ALTECC@@IAE_NXZ
?width_codeword_parameter@MDL_ALTECC@@IAEPAVMDL_PARAMETER_ELEMENT@@XZ
?width_dataword_parameter@MDL_ALTECC@@IAEPAVMDL_PARAMETER_ELEMENT@@XZ
mmdl_add_integer_parameter_information
mmdl_add_integer_parameter_information_by_structure
mmdl_add_port_information
mmdl_add_port_information_by_structure
mmdl_add_string_parameter_information
mmdl_add_string_parameter_information_by_structure
mmdl_clear_vec_timer
mmdl_create_model
mmdl_delete_model
mmdl_evaluate_model
mmdl_evaluate_model_with_status
mmdl_get_buried_port_value
mmdl_get_buried_port_value_as_mlib_int
mmdl_get_integer_parameter_information
mmdl_get_port_information
mmdl_get_port_value
mmdl_get_port_value_as_mlib_int
mmdl_get_string_parameter_information
mmdl_increment_vec_timer
mmdl_init_model
mmdl_reset_model
mmdl_set_initial_port_value
mmdl_set_initial_port_value_by_mlib_int
mmdl_set_port_value
mmdl_set_port_value_by_mlib_int

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6dea0da920b81814fcd2f6a5366037a

Headers

File Characteristics

PDB Paths

Imports

mlib_int

mmdl_base

dinkum_alt

msvcr90

kernel32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 512B - Virtual size: 940B

.rsrc Size: 1024B - Virtual size: 688B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 512B - Virtual size: 940B

.rsrc
Size: 1024B - Virtual size: 688B

.reloc
Size: 1KB - Virtual size: 1KB