ea8ce628d607a00eadc72f5d4a8f8b4b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ea8ce628d607a00eadc72f5d4a8f8b4b_JaffaCakes118
Size

216KB
MD5

ea8ce628d607a00eadc72f5d4a8f8b4b
SHA1

41b41b33aebaace156515ce81ccc6c96a7119ab0
SHA256

f0768f640a496ce420af2fd0c069de132aa859ed071de022df2496184883aca8
SHA512

6f6597dd9af8355a41171997c89ab460b9be91af6254073281cc0f1bcedff4a55b4fafe067b8f1cf868ed3c4c73e93bd64101c0c63c580648b81fe6b96f21e36
SSDEEP

3072:sDG0GfYizQsVY4iS72g+vv+p9PZm1eQ7W+/8Ug0XgvvjED4wZlKLJe9xK+ImL:yG0WbnG872g+upl0eQ7W+/8UgKHr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea8ce628d607a00eadc72f5d4a8f8b4b_JaffaCakes118

Files

ea8ce628d607a00eadc72f5d4a8f8b4b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

aebcebb1993b433cf36d5aadbd29c366

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libvlccore

block_Alloc
dialog_VFatal
mdate
var_GetChecked
var_Inherit
var_LocationParse
vlc_Log
vlc_cond_destroy
vlc_cond_init
vlc_cond_signal
vlc_cond_timedwait
vlc_mutex_destroy
vlc_mutex_init
vlc_mutex_lock
vlc_mutex_unlock

kernel32

CloseHandle
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesA
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
ReleaseSemaphore
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_close
_fstat
_lfind
_putenv
_strdup
_write
__dllonexit
__lc_codepage
__mb_cur_max
_commit
_errno
_filbuf
_findclose
_findfirst
_findnext
_flsbuf
_fullpath
_iob
_snwprintf
_stricmp
abort
atoi
fflush
fgetc
fputc
fputs
free
fwrite
getenv
gmtime
localeconv
localtime
malloc
memchr
memcpy
realloc
sprintf
sscanf
strchr
strcmp
strcpy
strlen
strpbrk
strrchr
strspn
toupper
vfprintf
wcslen

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize
CreateItemMoniker
GetRunningObjectTable

oleaut32

SysAllocString
SysFreeString
VariantClear
VariantInit

Exports

Exports

vlc_entry__1_2_0l
vlc_entry_copyright__1_2_0l
vlc_entry_license__1_2_0l

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.gnu_deb
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aebcebb1993b433cf36d5aadbd29c366

Headers

DLL Characteristics

File Characteristics

Imports

libvlccore

kernel32

msvcrt

ole32

oleaut32

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 95KB

.data Size: 19KB - Virtual size: 18KB

.rdata Size: 35KB - Virtual size: 34KB

.bss Size: - Virtual size: 2KB

.edata Size: 512B - Virtual size: 160B

.idata Size: 3KB - Virtual size: 2KB

.reloc Size: 5KB - Virtual size: 4KB

.gnu_deb Size: 56KB - Virtual size: 56KB

.text
Size: 96KB - Virtual size: 95KB

.data
Size: 19KB - Virtual size: 18KB

.rdata
Size: 35KB - Virtual size: 34KB

.bss
Size: - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 160B

.idata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 5KB - Virtual size: 4KB

.gnu_deb
Size: 56KB - Virtual size: 56KB