04415551f76023ca2c17e7c740ec80c0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

04415551f76023ca2c17e7c740ec80c0_JaffaCakes118
Size

121KB
MD5

04415551f76023ca2c17e7c740ec80c0
SHA1

be61f9230b553c87a125779790dce4946b01169f
SHA256

f037ba9f7b9f44b1432c2f67a9d8ef6e7bb83ab4aaad08ff105ed4439b5ed427
SHA512

82dfc0d4b0b70c9fb7d7f07bc4422050042d4da487d59005da440ab42f149781ac0744512afeea65258bb41e4301b9c560b54bf9c79b6560a4bcc8341d5b9415
SSDEEP

3072:lEB20uBr1aWDgSbk+VWbvXxM76ftxtlGyGXzOa/nVU:lJ0qMWDgSnV4vXxM7uxlGnj/V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04415551f76023ca2c17e7c740ec80c0_JaffaCakes118

Files

04415551f76023ca2c17e7c740ec80c0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

a310a9ad61e60fbc9017a8c72b3ad158

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libvlccore

__aout_VolumeDown
__aout_VolumeGet
__aout_VolumeSet
__aout_VolumeUp
__config_GetInt
__config_GetPsz
__input_item_NewExt
__intf_Create
__msg_Generic
__net_Accept
__net_Read
__net_vaPrintf
__osd_MenuActivate
__osd_MenuDown
__osd_MenuHide
__osd_MenuNext
__osd_MenuPrev
__osd_MenuShow
__osd_MenuUp
__osd_Volume
__pl_Hold
__pl_Release
__var_AddCallback
__var_Change
__var_Command
__var_Create
__var_DelCallback
__var_Get
__var_Set
__var_TriggerCallback
__var_Type
__vlc_object_detach
__vlc_object_find
__vlc_object_kill
__vlc_object_release
decode_URI
input_GetItem
input_item_AddOption
input_item_GetURI
intf_RunThread
libvlc_Quit
msleep
net_Listen
net_ListenClose
playlist_AddInput
playlist_Clear
playlist_Control
playlist_CurrentInput
playlist_Lock
playlist_RecursiveNodeSort
playlist_Status
playlist_Unlock
secstotimestr
utf8_vfprintf
var_GetChecked
var_SetChecked
vlc_error
vlc_gettext
vlc_mutex_destroy
vlc_mutex_init
vlc_mutex_lock
vlc_mutex_unlock
vlc_plugin_set
vlc_release
vlc_restorecancel
vlc_savecancel

kernel32

AllocConsole
DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetProcAddress
GetStdHandle
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
ReadConsoleInputA
Sleep
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_strdup
__dllonexit
__lc_codepage
__mb_cur_max
_errno
_flsbuf
_iob
abort
atof
atoi
fflush
fputc
free
freopen
fwrite
getenv
gmtime
localeconv
localtime
malloc
memchr
memcpy
realloc
setvbuf
strchr
strcmp
strlen
strncmp
strpbrk
strstr
toupper
vfprintf
wcslen

ws2_32

closesocket

Exports

Exports

vlc_entry__1_0_0e
vlc_entry_copyright__1_0_0e
vlc_entry_license__1_0_0e

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 159B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.gnu_deb
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a310a9ad61e60fbc9017a8c72b3ad158

Headers

File Characteristics

Imports

libvlccore

kernel32

msvcrt

ws2_32

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 46KB

.data Size: 512B - Virtual size: 32B

.rdata Size: 9KB - Virtual size: 9KB

.bss Size: - Virtual size: 2KB

.edata Size: 512B - Virtual size: 159B

.idata Size: 3KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.gnu_deb Size: 56KB - Virtual size: 56KB

.text
Size: 47KB - Virtual size: 46KB

.data
Size: 512B - Virtual size: 32B

.rdata
Size: 9KB - Virtual size: 9KB

.bss
Size: - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 159B

.idata
Size: 3KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB

.gnu_deb
Size: 56KB - Virtual size: 56KB