a55d3c522420cb8e213c032724adebde_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a55d3c522420cb8e213c032724adebde_JaffaCakes118
Size

397KB
MD5

a55d3c522420cb8e213c032724adebde
SHA1

7eb9f489c87c2f052ed71e2d12dce01d51b1428b
SHA256

6ee46d6f95c52cd654d6e5690d499685811b1d1228d18a10cf821a8c0205d393
SHA512

b696d7253515564e1ffb70923baf031a613747080df95269110f72e13ddf750dcd77aca5e2c1f7f2a77888f0ffd9b5e44f1c2b394009c86cff7be573a3134d9c
SSDEEP

12288:sVuNASsV5dhwew2gsXT9VpOdcQkiDklAmG:sPSsV5dhTXgsX5V6NkiDI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a55d3c522420cb8e213c032724adebde_JaffaCakes118

Files

a55d3c522420cb8e213c032724adebde_JaffaCakes118
.dll windows:4 windows x86 arch:x86

adf7a97fb333ced892e5b25d96411dcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libvlccore

LocaleFree
ToLocale
block_Alloc
demux_GetParentInput
dialog_VFatal
es_format_Clean
es_format_Init
input_Control
msg_Generic
msleep
var_AddCallback
var_Create
var_DelCallback
var_Destroy
var_Get
var_GetChecked
var_Inherit
var_SetChecked
vlc_gettext
vlc_meta_Set
vlc_mutex_destroy
vlc_mutex_init
vlc_mutex_lock
vlc_mutex_unlock
vlc_object_release
vlc_open
vlc_plugin_set
vlc_timer_create
vlc_timer_destroy
vlc_timer_schedule

kernel32

CloseHandle
CreateEventA
CreateFileA
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
FreeLibrary
GetDriveTypeA
GetFileAttributesA
GetLastError
GetLogicalDrives
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetVersion
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
ReadFile
ResetEvent
SetFilePointer
Sleep
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_close
_lseek
_mkdir
_open
_read
_strdup
_write
__dllonexit
__lc_codepage
__mb_cur_max
_assert
_errno
_findclose
_findfirst
_findnext
_fstati64
_fullpath
_iob
_lseeki64
_snprintf
_stati64
_stricmp
_strnicmp
abort
atoi
calloc
fclose
fflush
fgetc
fgets
fopen
fprintf
fputc
fread
free
fwrite
getenv
gmtime
localeconv
localtime
malloc
memchr
memcpy
memset
perror
puts
rand
realloc
sprintf
srand
sscanf
strchr
strcmp
strcpy
strerror
strlen
strncat
strncpy
strpbrk
strrchr
strspn
strtok
strtol
toupper
vfprintf
wcslen

Exports

Exports

vlc_entry__1_1_0g
vlc_entry_copyright__1_1_0g
vlc_entry_license__1_1_0g

Sections

.text
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 163B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.gnu_deb
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adf7a97fb333ced892e5b25d96411dcb

Headers

DLL Characteristics

File Characteristics

Imports

libvlccore

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 188KB - Virtual size: 188KB

.data Size: 512B - Virtual size: 36B

.rdata Size: 25KB - Virtual size: 25KB

.bss Size: - Virtual size: 4KB

.edata Size: 512B - Virtual size: 163B

.idata Size: 3KB - Virtual size: 3KB

.reloc Size: 5KB - Virtual size: 5KB

.gnu_deb Size: 172KB - Virtual size: 172KB

.text
Size: 188KB - Virtual size: 188KB

.data
Size: 512B - Virtual size: 36B

.rdata
Size: 25KB - Virtual size: 25KB

.bss
Size: - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 163B

.idata
Size: 3KB - Virtual size: 3KB

.reloc
Size: 5KB - Virtual size: 5KB

.gnu_deb
Size: 172KB - Virtual size: 172KB