b439a43385f2b954014ddca874e86718_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b439a43385f2b954014ddca874e86718_JaffaCakes118
Size

234KB
MD5

b439a43385f2b954014ddca874e86718
SHA1

84b789fc1f0b01e74dd71542459b99b39416097d
SHA256

8c72637901b489de6a14edec1a0f5bd73b0abd34e902f5c1031f15f3aa9a1496
SHA512

798c61b3937610a3fd43259b717fc846f6fc23962ebac523ef1654a61c6a39d4dcadc7e5c82cbba56ec228fc4e5f87489520eb13164eb47868f0849496d70738
SSDEEP

6144:MIhKH6KdoQOlVLvXx7oCl1aqnpwx9tKCV3uzIkrZRiD6i1Ti:MI8Z+QOcCltpGgueMk9RiD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b439a43385f2b954014ddca874e86718_JaffaCakes118

Files

b439a43385f2b954014ddca874e86718_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e2566b655ef436e30c59dc5f266f8967

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libvlccore

aout_ToggleMute
aout_VolumeDown
aout_VolumeGet
aout_VolumeSet
aout_VolumeUp
config_GetInt
decode_URI
input_Control
input_GetItem
input_item_AddOption
input_item_GetURI
input_item_NewExt
intf_Create
libvlc_Quit
msg_Generic
msleep
net_Accept
net_Listen
net_ListenClose
net_Read
net_vaPrintf
osd_MenuActivate
osd_MenuDown
osd_MenuHide
osd_MenuNext
osd_MenuPrev
osd_MenuShow
osd_MenuUp
osd_Volume
pl_Get
playlist_AddInput
playlist_Clear
playlist_Control
playlist_CurrentInput
playlist_Lock
playlist_RecursiveNodeSort
playlist_Status
playlist_Unlock
secstotimestr
utf8_vfprintf
var_AddCallback
var_Change
var_Command
var_Create
var_DelCallback
var_FreeList
var_Get
var_GetAndSet
var_GetChecked
var_Inherit
var_Set
var_SetChecked
var_TriggerCallback
var_Type
vlc_GetActionId
vlc_error
vlc_gettext
vlc_mutex_destroy
vlc_mutex_init
vlc_mutex_lock
vlc_mutex_unlock
vlc_object_kill
vlc_object_release
vlc_plugin_set
vlc_release
vlc_restorecancel
vlc_savecancel

kernel32

AllocConsole
DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetProcAddress
GetStdHandle
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
ReadConsoleInputA
Sleep
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_strdup
__dllonexit
__lc_codepage
__mb_cur_max
_assert
_errno
_flsbuf
_iob
_strnicmp
abort
atof
atoi
fflush
fgetc
fputc
free
freopen
fwrite
getenv
gmtime
localeconv
localtime
malloc
memchr
memcpy
realloc
setvbuf
strchr
strcmp
strlen
strpbrk
strspn
strstr
toupper
vfprintf
wcslen

ws2_32

closesocket

Exports

Exports

vlc_entry__1_1_0g
vlc_entry_copyright__1_1_0g
vlc_entry_license__1_1_0g

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.gnu_deb
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2566b655ef436e30c59dc5f266f8967

Headers

DLL Characteristics

File Characteristics

Imports

libvlccore

kernel32

msvcrt

ws2_32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 512B - Virtual size: 32B

.rdata Size: 9KB - Virtual size: 9KB

.bss Size: - Virtual size: 2KB

.edata Size: 512B - Virtual size: 162B

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.gnu_deb Size: 168KB - Virtual size: 168KB

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 512B - Virtual size: 32B

.rdata
Size: 9KB - Virtual size: 9KB

.bss
Size: - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 162B

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB

.gnu_deb
Size: 168KB - Virtual size: 168KB