c14d1027d95669c9d8d4530c43fed8aa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c14d1027d95669c9d8d4530c43fed8aa_JaffaCakes118
Size

2.1MB
MD5

c14d1027d95669c9d8d4530c43fed8aa
SHA1

65e475fdd4d1ac25f7f6327a5e28658d5bd2a779
SHA256

d2785b1b371f25d32cb57cdf56dd7d4d3cb10c3b89e92146367d59e018830e78
SHA512

e0204881feebebbfb0631534354716e055ba572abafa839b7ef65cf800b0c81129a9ee34998dc23cd20d23b41c5f1f9d1b8b725e38055ddc5002cd6385f55600
SSDEEP

24576:e0jtc3VRwJxvxOoH25RiilEtXNM0Jz5E5wbSAOBdjZsnbgN+p9mxbPn+ZBnkYOmV:esvwbMXGpZs8+p8xT+ZBntXyWPP/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c14d1027d95669c9d8d4530c43fed8aa_JaffaCakes118

Files

c14d1027d95669c9d8d4530c43fed8aa_JaffaCakes118
.dll windows:5 windows x86 arch:x86

00be39cf18647a47e986368eb002f605

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Compile\dolphin\Source\Plugins\Plugin_Wiimote\Win32\Release\Plugin_Wiimote.pdb

Imports

sdl

SDL_JoystickNumAxes
SDL_JoystickNumButtons
SDL_JoystickNumBalls
SDL_JoystickNumHats
SDL_JoystickName
SDL_JoystickGetHat
SDL_JoystickGetButton
SDL_GetError
SDL_Init
SDL_JoystickOpened
SDL_NumJoysticks
SDL_JoystickClose
SDL_JoystickOpen
SDL_JoystickUpdate
SDL_JoystickGetAxis
SDL_Quit
SDL_WasInit

wiiuse

wiiuse_poll
wiiuse_init
wiiuse_set_ir_position
wiiuse_io_write
wiiuse_set_accel_threshold
wiiuse_set_leds
wiiuse_rumble
wiiuse_cleanup
wiiuse_motion_sensing
wiiuse_find
wiiuse_set_ir
wiiuse_io_read
wiiuse_read_data

kernel32

FindFirstFileA
SetFileTime
GetFileTime
GetTempFileNameA
GetACP
GetUserDefaultLCID
IsValidLocale
SetThreadLocale
WriteFile
GetEnvironmentVariableA
GetModuleHandleA
GetProfileStringA
GetCPInfo
IsValidCodePage
GetComputerNameA
GetDiskFreeSpaceA
SetEnvironmentVariableA
GlobalMemoryStatus
GetModuleFileNameA
GetExitCodeProcess
TerminateProcess
FindClose
GetWindowsDirectoryA
GetFileType
GetFileAttributesA
CopyFileA
SetCurrentDirectoryA
FreeLibrary
FindNextFileA
IsBadReadPtr
IsBadStringPtrA
ReadFile
CreatePipe
PeekNamedPipe
SetNamedPipeHandleState
CreateThread
CreateProcessA
DuplicateHandle
ExpandEnvironmentStringsA
SetLastError
LocalAlloc
FindResourceA
WriteProfileStringA
WritePrivateProfileStringA
GetPrivateProfileStringA
SizeofResource
LockResource
LoadResource
SetErrorMode
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalSize
GlobalFree
HeapSize
GetProcessHeap
InterlockedExchange
HeapAlloc
GetCommandLineA
RtlUnwind
HeapFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapReAlloc
GetModuleHandleW
SetStdHandle
DeleteFileA
CreateDirectoryA
RemoveDirectoryA
GetDriveTypeA
GetFullPathNameA
MoveFileA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
WriteConsoleW
GetModuleFileNameW
LCMapStringA
LCMapStringW
FatalAppExitA
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetOEMCP
VirtualQuery
SetConsoleCtrlHandler
EnumSystemLocalesA
GetStringTypeA
GetStringTypeW
CreateFileW
GetCurrentDirectoryA
GetConsoleOutputCP
LoadLibraryW
GetLocaleInfoW
SetEndOfFile
CompareStringA
CompareStringW
GetShortPathNameA
GetFileSize
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileA
OutputDebugStringA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
GetVersionExA
GetExitCodeThread
GetCurrentProcess
GetProcessAffinityMask
GetProcAddress
TlsAlloc
TlsSetValue
TlsFree
TlsGetValue
ResumeThread
SuspendThread
TerminateThread
SetThreadPriority
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
CreateSemaphoreA
ReleaseMutex
CreateMutexA
LoadLibraryA
GetSystemInfo
GetCurrentThreadId
GetThreadLocale
GetLocaleInfoA
GetTimeZoneInformation
GetTempPathA
GetCurrentProcessId
ExitProcess
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterA
FillConsoleOutputAttribute
SetConsoleCursorPosition
SetConsoleTextAttribute
WriteConsoleA
FreeConsole
AllocConsole
GetStdHandle
SetConsoleTitleA
SetConsoleScreenBufferSize
SetConsoleWindowInfo
GetLastError
FormatMessageA
QueryPerformanceFrequency
RaiseException
SetEvent
CreateEventA
GetCurrentThread
SetThreadAffinityMask
WaitForSingleObject
CloseHandle
LeaveCriticalSection
TryEnterCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
CancelIo
Sleep
OpenProcess

user32

IsClipboardFormatAvailable
OpenClipboard
HideCaret
ShowCaret
GetWindowTextLengthA
LoadIconA
LoadBitmapA
LoadImageA
ChildWindowFromPoint
GetClassNameA
GetWindowTextA
LoadAcceleratorsA
DestroyAcceleratorTable
CreateAcceleratorTableA
TranslateAcceleratorA
GetMessagePos
SetMenu
EndPaint
DrawIcon
BeginPaint
GetUpdateRect
GetWindowDC
GetMessageA
ValidateRect
GetMenuState
CheckMenuItem
CheckMenuRadioItem
ModifyMenuA
UnionRect
SetMenuItemInfoA
CreatePopupMenu
DestroyMenu
RemoveMenu
InsertMenuA
AppendMenuA
CreateMenu
GetSubMenu
InsertMenuItemA
RegisterClipboardFormatA
EmptyClipboard
GetClipboardData
EnumClipboardFormats
GetClipboardFormatNameA
SetClipboardData
ShowCursor
DrawEdge
DrawStateA
GetKeyNameTextA
MapVirtualKeyA
KillTimer
LoadCursorFromFileA
DestroyCursor
OffsetRect
CopyRect
GetDlgItem
CreateDialogParamA
InflateRect
GetUpdateRgn
SetWindowsHookExA
IsDialogMessageA
TrackPopupMenu
IsWindow
PtInRect
GetCapture
UnhookWindowsHookEx
UnregisterHotKey
RegisterHotKey
CallNextHookEx
GetActiveWindow
GetMenuItemCount
GetMenuItemInfoA
SystemParametersInfoA
GetMessageTime
GetWindow
CloseClipboard
EndDeferWindowPos
InvalidateRect
GetFocus
IsWindowEnabled
IsWindowVisible
CallWindowProcA
DeferWindowPos
ClientToScreen
UpdateWindow
RedrawWindow
SetParent
WindowFromPoint
ScrollWindow
SetScrollInfo
GetScrollInfo
SetCursorPos
ReleaseCapture
SetCapture
EnableWindow
SetFocus
FillRect
GetKeyState
VkKeyScanA
GetDC
ReleaseDC
TranslateMessage
PostQuitMessage
CreateDialogIndirectParamA
MoveWindow
UnregisterClassA
FlashWindow
SetWindowRgn
AdjustWindowRectEx
GetSystemMenu
EnableMenuItem
DrawMenuBar
GetDesktopWindow
SetWindowPos
IsIconic
IsZoomed
ShowWindow
BringWindowToTop
SetWindowTextA
GetSysColor
DrawFocusRect
SetWindowLongA
GetWindowLongA
DrawTextA
DestroyWindow
DefWindowProcA
SendMessageA
EnumWindows
PostMessageA
RegisterClassA
ExitWindowsEx
MessageBeep
GetWindowThreadProcessId
CreateWindowExA
LoadCursorA
SetCursor
PostThreadMessageA
PeekMessageA
DispatchMessageA
MsgWaitForMultipleObjects
MessageBoxA
keybd_event
DestroyIcon
DrawIconEx
DrawFrameControl
CreateIconIndirect
GetIconInfo
GetParent
GetForegroundWindow
GetKeyboardState
GetSystemMetrics
GetAsyncKeyState
ScreenToClient
GetClientRect
GetCursorPos
MapWindowPoints
GetClassInfoA
SetForegroundWindow
BeginDeferWindowPos
SetTimer
GetWindowRect

xinput9_1_0

XInputGetState

comctl32

ImageList_Create
ImageList_BeginDrag
ImageList_Add
ImageList_AddMasked
ImageList_Remove
ImageList_SetBkColor
ImageList_Replace
ImageList_SetDragCursorImage
ImageList_DragLeave
ImageList_DragEnter
ImageList_GetIcon
ord6
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_Draw
ImageList_GetImageCount
ord16
ImageList_Destroy
ImageList_EndDrag
ImageList_DragMove
ord17

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime

gdi32

CreateCompatibleDC
GetSystemPaletteEntries
CreateSolidBrush
CreatePen
GetDeviceCaps
DeleteObject
CreateFontIndirectA
ExcludeClipRect
CreateRectRgn
GetTextExtentPoint32A
GetObjectA
CreatePatternBrush
CreateCompatibleBitmap
SelectPalette
RealizePalette
GdiFlush
SelectObject
GetTextMetricsA
GetRegionData
ExtCreateRegion
OffsetRgn
SetBkMode
SetBkColor
SetTextColor
EnumFontFamiliesExA
CreateEnhMetaFileA
GetMetaFileBitsEx
SetWinMetaFileBits
GetPaletteEntries
BitBlt
CreateBitmap
SetStretchBltMode
GetClipBox
ExtSelectClipRgn
ExtFloodFill
GetPixel
SetPixel
Polyline
PolyBezier
TextOutA
SetROP2
GetCharABCWidthsA
GetTextExtentExPointA
SetWindowOrgEx
SetViewportOrgEx
SetWindowExtEx
SetViewportExtEx
SetMapMode
GetBkColor
GetTextColor
SelectClipRgn
Arc
Pie
Polygon
SetPolyFillMode
PolyPolygon
Rectangle
RoundRect
Ellipse
GetStockObject
MaskBlt
StretchBlt
StretchDIBits
GetNearestPaletteIndex
CreatePalette
CreateHatchBrush
ExtCreatePen
LineTo
MoveToEx
GetRgnBox
EqualRgn
PtInRegion
DeleteDC
RectInRegion
CreatePolygonRgn
CombineRgn
RestoreDC
SaveDC
CreateRectRgnIndirect
SetTextAlign
PatBlt
CreateICA
CreateDIBSection
GetDIBits
CreateDIBitmap
GetDIBColorTable
CreateBitmapIndirect
GetEnhMetaFileA
CopyEnhMetaFileA
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetMetaFileBitsEx
GetWinMetaFileBits
PlayEnhMetaFile
CloseEnhMetaFile
SetBrushOrgEx

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA
ChooseFontA
ChooseColorA

advapi32

RegCloseKey
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegOpenKeyExA
RegQueryInfoKeyA
RegCreateKeyA
RegEnumValueA
RegEnumKeyA
RegDeleteValueA
RegQueryValueExA
RegDeleteKeyA
RegSetValueExA
GetUserNameA

shell32

SHGetMalloc
SHGetSpecialFolderLocation
ShellExecuteExA
DragAcceptFiles
DragFinish
DragQueryPoint
DragQueryFileA
ExtractIconA
ExtractIconExA
SHGetPathFromIDListA

ole32

OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
RevokeDragDrop
ReleaseStgMedium
OleGetClipboard
OleUninitialize
CoLockObjectExternal
RegisterDragDrop
OleInitialize
CoCreateInstance

oleaut32

SysAllocString
SysStringLen

Exports

Exports

DllConfig
DllDebugger
DoState
GetDllInfo
Initialize
SetDllGlobals
Shutdown
Wiimote_ControlChannel
Wiimote_GetAttachedControllers
Wiimote_InterruptChannel
Wiimote_Update

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00be39cf18647a47e986368eb002f605

Headers

File Characteristics

PDB Paths

Imports

sdl

wiiuse

kernel32

user32

xinput9_1_0

comctl32

winmm

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 392KB - Virtual size: 392KB

.data Size: 41KB - Virtual size: 152KB

.reloc Size: 134KB - Virtual size: 134KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 392KB - Virtual size: 392KB

.data
Size: 41KB - Virtual size: 152KB

.reloc
Size: 134KB - Virtual size: 134KB