d9d77cc9d696808e4352f94f8406f938_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9d77cc9d696808e4352f94f8406f938_JaffaCakes118
Size

204KB
MD5

d9d77cc9d696808e4352f94f8406f938
SHA1

52aabf0c962e6039bc0be0765509d08be93cd06e
SHA256

2780baed5f3a47bf15e8fed1536bc83159eb565c660494f94b4fb5fff142d313
SHA512

c7ba260d66f19e9848acc4b9d8c359dc7b101983397e9e1210f2cd45f78f7efd0b50de0df214db99ac2433976f233fa8c569ca047e02f58a9d4330a7d483ac10
SSDEEP

6144:LeZgqsVkZFTxDRh5F9yKb4Mvg+GYo+zVykVy:LMgzWHlDRLFDbbpGYosN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9d77cc9d696808e4352f94f8406f938_JaffaCakes118

Files

d9d77cc9d696808e4352f94f8406f938_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d8634ecb0a07fcf37df2f17e66e0deee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libvlccore

msg_Generic
vlc_plugin_set

kernel32

DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
Sleep
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__lc_codepage
__mb_cur_max
_errno
_iob
abort
fflush
fgetc
fputc
free
fwrite
getenv
gmtime
localeconv
localtime
malloc
memchr
memcpy
realloc
strchr
strlen
strpbrk
strspn
toupper
vfprintf
wcslen

Exports

Exports

vlc_entry__1_1_0g
vlc_entry_copyright__1_1_0g
vlc_entry_license__1_1_0g

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.gnu_deb
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8634ecb0a07fcf37df2f17e66e0deee

Headers

DLL Characteristics

File Characteristics

Imports

libvlccore

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 512B - Virtual size: 32B

.rdata Size: 1KB - Virtual size: 1KB

.bss Size: - Virtual size: 2KB

.edata Size: 512B - Virtual size: 165B

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 612B

.gnu_deb Size: 172KB - Virtual size: 172KB

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 512B - Virtual size: 32B

.rdata
Size: 1KB - Virtual size: 1KB

.bss
Size: - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 165B

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 612B

.gnu_deb
Size: 172KB - Virtual size: 172KB