cec32ef9c1492498e2fa80773112589d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

cec32ef9c1492498e2fa80773112589d_JaffaCakes118
Size

176KB
MD5

cec32ef9c1492498e2fa80773112589d
SHA1

d99d08dd724dc77a6726428bc88c076db1ccb49f
SHA256

8a9b0bd28f17f4ee8a98437e4e43b2c53197fbec85c3cf2a77ef7e88c661a78a
SHA512

6a50722b52f8a70826b3a0d9f13b9c72833eaa39f31cb680dacbb4ceba6bf5a9ddac78a5c8319510e87943ef580615c4d8e07f05ff0c9bc7c17e4e7c2a3773dd
SSDEEP

3072:ffxXL+H7a1jNuTQgJ7CJx5LvmABMdTFic1Nq4IKrUO17tzyM9SJ:dL+HwITRIJX7mCMdTFiGrIOHzyM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cec32ef9c1492498e2fa80773112589d_JaffaCakes118

Files

cec32ef9c1492498e2fa80773112589d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

70dfea24e2425af4663638d49d600796

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\BUILD_~1\jdk6_31\control\build\WINDOW~1\tmp\sun\com.sun.corba.se.internal.io\ioser12\obj\ioser12.pdb

Imports

msvcr71

_adjust_fdiv
__CppXcptFilter
_initterm
__dllonexit
_onexit
_except_handler3
malloc
free

kernel32

DisableThreadLibraryCalls

Exports

Exports

_Java_com_sun_corba_se_internal_io_IIOPInputStream_allocateNewObject@16
_Java_com_sun_corba_se_internal_io_IIOPInputStream_loadClass@16
_Java_com_sun_corba_se_internal_io_IIOPInputStream_readObject@20
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setBooleanField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setBooleanFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setByteField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setByteFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setCharField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setCharFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setDoubleField@32
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setDoubleFieldOpt@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setFloatField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setFloatFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setIntField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setIntFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setLongField@32
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setLongFieldOpt@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setObjectField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setObjectFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setShortField@28
_Java_com_sun_corba_se_internal_io_IIOPInputStream_setShortFieldOpt@24
_Java_com_sun_corba_se_internal_io_IIOPInputStream_throwExceptionType@16
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getBooleanField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getBooleanFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getByteField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getByteFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getCharField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getCharFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getDoubleField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getDoubleFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getFloatField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getFloatFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getIntField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getIntFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getLongField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getLongFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getObjectField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getObjectFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getShortField@24
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_getShortFieldOpt@20
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_throwExceptionType@16
_Java_com_sun_corba_se_internal_io_IIOPOutputStream_writeObject@20
_Java_com_sun_corba_se_internal_io_LibraryManager_getMajorVersion@8
_Java_com_sun_corba_se_internal_io_LibraryManager_getMinorVersion@8
_Java_com_sun_corba_se_internal_io_LibraryManager_setEnableOverride@16
_Java_com_sun_corba_se_internal_io_ObjectStreamClass_hasStaticInitializer@12
_Java_com_sun_corba_se_internal_io_ObjectStreamField_getFieldIDNative@20
_Java_com_sun_corba_se_internal_util_JDKClassLoader_specialLoadClass@20

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

70dfea24e2425af4663638d49d600796

Headers

File Characteristics

PDB Paths

Imports

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 164KB - Virtual size: 164KB

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 202B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 164KB - Virtual size: 164KB

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 202B