ddbedffa5380981a75c1097dcea7e93e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ddbedffa5380981a75c1097dcea7e93e_JaffaCakes118
Size

440KB
MD5

ddbedffa5380981a75c1097dcea7e93e
SHA1

ba5afb2a427b1fdfadb420a0d5d6394c7006120a
SHA256

b0fcef11353412878aeb1994908896f530737e12c09c9cbd2d0f82c3a05b84b3
SHA512

fdcb27e242c6d57722cb1ac2a93e2159b5b2c9e1314cdc3c87fefc56cac75a4822457767c82fa89178bb3712bbe97493f9dda199e2e41f319cd03e9ec54e0aae
SSDEEP

12288:8LiKws0+IsCCP9JOK2b/y/0Y+KuVkApKKhX:86sChly/WKIDZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddbedffa5380981a75c1097dcea7e93e_JaffaCakes118

Files

ddbedffa5380981a75c1097dcea7e93e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

4e9997f4a245122baff2e47af406cd95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\BUILD_~1\jdk6_17\control\build\WINDOW~1\tmp\sun\sun.font\fontmanager\obj\fontmanager.pdb

Imports

java

_JNU_ThrowArrayIndexOutOfBoundsException@8
_JNU_ThrowClassNotFoundException@8
_JNU_ThrowInternalError@8
_JNU_ThrowNoSuchFieldException@8
_JNU_NewStringPlatform@8

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryInfoKeyW
RegQueryInfoKeyA
RegEnumValueW
RegEnumValueA

user32

GetDesktopWindow
SystemParametersInfoA
FillRect
ReleaseDC
GetWindowDC
GetDC

gdi32

SelectObject
CreateFontIndirectW
SetMapMode
CreateCompatibleDC
GetTextMetricsA
GetGlyphOutlineA
CreateCompatibleBitmap
GetStockObject
SetBkColor
SetTextColor
GetDeviceCaps
ExtTextOutW
EnumFontFamiliesExW
EnumFontFamiliesExA
GetDIBits
DeleteObject

awt

_GrPrim_Sg2dGetCompInfo@16
_SurfaceData_GetOps@8
_SurfaceData_IntersectBounds@8
_GrPrim_Sg2dGetEaRGB@8
_GrPrim_Sg2dGetPixel@8
_GetNativePrim@8
_GrPrim_Sg2dGetLCDTextContrast@8
AccelGlyphCache_RemoveAllCellInfos
_GrPrim_Sg2dGetClip@12

msvcr71

__dllonexit
_except_handler3
_adjust_fdiv
_onexit
__CppXcptFilter
memcpy
_initterm
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
wcsstr
strstr
wcslen
wcscpy
wcscmp
strrchr
_assert
_stricmp
memset
memmove
strlen
strtoul
toupper
strcmp
malloc
free
_setjmp3
longjmp
realloc
sqrt
ceil
floor
calloc
pow
getenv
fabs
strcpy
strcat

kernel32

GetSystemDirectoryA
DisableThreadLibraryCalls
GetVersion
GetVersionExA
GetWindowsDirectoryA

Exports

Exports

_Java_java_text_Bidi_nativeBidiChars@36
_Java_java_text_Bidi_nativeGetDirectionCode@12
_Java_sun_font_FileFontStrike__1getGlyphImageFromWindows@28
_Java_sun_font_FileFontStrike_createScalerContext@44
_Java_sun_font_FileFontStrike_getNullScalerContext@16
_Java_sun_font_FileFontStrike_initNative@8
_Java_sun_font_FileFont_freeScaler@16
_Java_sun_font_FileFont_getFontMetrics@16
_Java_sun_font_FileFont_getGlyphAdvance@20
_Java_sun_font_FileFont_getGlyphImage@20
_Java_sun_font_FileFont_getGlyphMetrics@24
_Java_sun_font_FileFont_getGlyphOutline@28
_Java_sun_font_FileFont_getGlyphOutlineBounds@20
_Java_sun_font_FileFont_getGlyphVectorOutline@32
_Java_sun_font_FileFont_getNullScaler@8
_Java_sun_font_FileFont_setNullScaler@16
_Java_sun_font_FontManager_getFont2D@12
_Java_sun_font_FontManager_getFontPath@12
_Java_sun_font_FontManager_getPlatformFontVar@8
_Java_sun_font_FontManager_initIDs@12
_Java_sun_font_FontManager_isCreatedFont@12
_Java_sun_font_FontManager_populateFontFileNameMap@24
_Java_sun_font_FontManager_setCreatedFont@12
_Java_sun_font_FontManager_setFont2D@16
_Java_sun_font_FontManager_setNativeFontPath@12
_Java_sun_font_StrikeCache_freeIntMemory@20
_Java_sun_font_StrikeCache_freeIntPointer@12
_Java_sun_font_StrikeCache_freeLongMemory@20
_Java_sun_font_StrikeCache_freeLongPointer@16
_Java_sun_font_StrikeCache_getGlyphCacheDescription@12
_Java_sun_font_SunLayoutEngine_initGVIDs@8
_Java_sun_font_SunLayoutEngine_nativeLayout@68
_Java_sun_font_TrueTypeFont_createScaler@24
_Java_sun_font_TrueTypeFont_getGlyphPoint@24
_Java_sun_font_Type1Font_createScaler@12
_Java_sun_font_Type1Font_getGlyphCode@20
_Java_sun_font_Type1Font_getMissingGlyphCode@16
_Java_sun_font_Type1Font_getNumGlyphs@16
_Java_sun_java2d_loops_DrawGlyphListAA_DrawGlyphListAA@20
_Java_sun_java2d_loops_DrawGlyphListLCD_DrawGlyphListLCD@20
_Java_sun_java2d_loops_DrawGlyphList_DrawGlyphList@20

Sections

.text
Size: 204KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4e9997f4a245122baff2e47af406cd95

Headers

File Characteristics

PDB Paths

Imports

java

advapi32

user32

gdi32

awt

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 204KB - Virtual size: 202KB

.rdata Size: 104KB - Virtual size: 101KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 952B

.reloc Size: 8KB - Virtual size: 6KB

.text Size: 108KB - Virtual size: 108KB

.text
Size: 204KB - Virtual size: 202KB

.rdata
Size: 104KB - Virtual size: 101KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 952B

.reloc
Size: 8KB - Virtual size: 6KB

.text
Size: 108KB - Virtual size: 108KB