0ca8e511fbab63b38dbe1f471f3cafc6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ca8e511fbab63b38dbe1f471f3cafc6_JaffaCakes118
Size

74KB
MD5

0ca8e511fbab63b38dbe1f471f3cafc6
SHA1

15ad4ddaf7c62aa98fed4c0fedc3911fffbd1d25
SHA256

814bbc0eb49a5f36220b50ff3f1c69f3507e9817bf1cbfa26329388343b305fe
SHA512

b8e7432a6afdab9f8a940b58455fad7d4a643d47ef879b602126e024301873ecf9a0b32f881c031be5cd532a625d9f854409181bfd6106042d1e185fe0aa8c89
SSDEEP

1536:3bAAspKlw2IHm3ARoRyjdUWHK+APJSD0VbMhdZJXi0CzBVdGeSeFMoY5NNTAmCCQ:sAspK62IHm3ARoRyjdUWHK+APJSD0Vb/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ca8e511fbab63b38dbe1f471f3cafc6_JaffaCakes118

Files

0ca8e511fbab63b38dbe1f471f3cafc6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1804ca53d54dec1029000e268593bc21

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\BUILD_AREA\jdk6\control\build\windows-i586\tmp\java\java.lang.management\management\obj\management.pdb

Imports

java

JNU_NewObjectByName
_JNU_ThrowIOException@8
_JNU_ThrowOutOfMemoryError@8
_JNU_ThrowInternalError@8
_JNU_ThrowNullPointerException@8
_JNU_ThrowIllegalArgumentException@8
_JNU_ThrowIOExceptionWithLastError@8
_JNU_GetStaticFieldByName@20
_JNU_GetStringPlatformChars@12
_JNU_ReleaseStringPlatformChars@12

jvm

_JVM_ActiveProcessorCount@0
_JVM_GetManagement@4
_JVM_GetAllThreads@8

advapi32

EqualSid

msvcr71

_onexit
sprintf
__dllonexit
free
strchr
malloc
_strdup
_errno
_initterm
_adjust_fdiv
__CppXcptFilter
_except_handler3

kernel32

DisableThreadLibraryCalls
GetProcessTimes
GlobalMemoryStatus
FreeLibrary
GetVersionExA
LoadLibraryA
GetProcAddress
GetLastError
GetVolumeInformationA
GetCurrentProcess

Exports

Exports

_JNI_OnLoad@8
_Java_com_sun_management_OperatingSystem_getCommittedVirtualMemorySize0@8
_Java_com_sun_management_OperatingSystem_getFreePhysicalMemorySize@8
_Java_com_sun_management_OperatingSystem_getFreeSwapSpaceSize@8
_Java_com_sun_management_OperatingSystem_getProcessCpuTime@8
_Java_com_sun_management_OperatingSystem_getTotalPhysicalMemorySize@8
_Java_com_sun_management_OperatingSystem_getTotalSwapSpaceSize@8
_Java_com_sun_management_OperatingSystem_initialize@8
_Java_sun_management_ClassLoadingImpl_setVerboseClass@12
_Java_sun_management_FileSystemImpl_init0@8
_Java_sun_management_FileSystemImpl_isAccessUserOnly0@12
_Java_sun_management_FileSystemImpl_isSecuritySupported0@12
_Java_sun_management_Flag_getAllFlagNames@8
_Java_sun_management_Flag_getFlags@20
_Java_sun_management_Flag_getInternalFlagCount@8
_Java_sun_management_Flag_initialize@8
_Java_sun_management_Flag_setBooleanValue@16
_Java_sun_management_Flag_setLongValue@20
_Java_sun_management_Flag_setStringValue@16
_Java_sun_management_GarbageCollectorImpl_getCollectionCount@8
_Java_sun_management_GarbageCollectorImpl_getCollectionTime@8
_Java_sun_management_GcInfoBuilder_fillGcAttributeInfo@28
_Java_sun_management_GcInfoBuilder_getLastGcInfo0@32
_Java_sun_management_GcInfoBuilder_getNumGcExtAttributes@12
_Java_sun_management_HotSpotDiagnostic_dumpHeap@16
_Java_sun_management_HotspotThread_getInternalThreadCount@8
_Java_sun_management_HotspotThread_getInternalThreadTimes0@16
_Java_sun_management_MemoryImpl_getMemoryManagers0@8
_Java_sun_management_MemoryImpl_getMemoryPools0@8
_Java_sun_management_MemoryImpl_getMemoryUsage0@12
_Java_sun_management_MemoryImpl_setVerboseGC@12
_Java_sun_management_MemoryManagerImpl_getMemoryPools0@8
_Java_sun_management_MemoryPoolImpl_getCollectionUsage0@8
_Java_sun_management_MemoryPoolImpl_getMemoryManagers0@8
_Java_sun_management_MemoryPoolImpl_getPeakUsage0@8
_Java_sun_management_MemoryPoolImpl_getUsage0@8
_Java_sun_management_MemoryPoolImpl_resetPeakUsage0@8
_Java_sun_management_MemoryPoolImpl_setCollectionThreshold0@24
_Java_sun_management_MemoryPoolImpl_setPoolCollectionSensor@12
_Java_sun_management_MemoryPoolImpl_setPoolUsageSensor@12
_Java_sun_management_MemoryPoolImpl_setUsageThreshold0@24
_Java_sun_management_ThreadImpl_dumpThreads0@20
_Java_sun_management_ThreadImpl_findDeadlockedThreads0@8
_Java_sun_management_ThreadImpl_findMonitorDeadlockedThreads0@8
_Java_sun_management_ThreadImpl_getThreadInfo0@20
_Java_sun_management_ThreadImpl_getThreadTotalCpuTime0@16
_Java_sun_management_ThreadImpl_getThreadUserCpuTime0@16
_Java_sun_management_ThreadImpl_getThreads@8
_Java_sun_management_ThreadImpl_resetContentionTimes0@16
_Java_sun_management_ThreadImpl_resetPeakThreadCount0@8
_Java_sun_management_ThreadImpl_setThreadContentionMonitoringEnabled0@12
_Java_sun_management_ThreadImpl_setThreadCpuTimeEnabled0@12
_Java_sun_management_VMManagementImpl_getAvailableProcessors@8
_Java_sun_management_VMManagementImpl_getClassInitializationTime@8
_Java_sun_management_VMManagementImpl_getClassLoadingTime@8
_Java_sun_management_VMManagementImpl_getClassVerificationTime@8
_Java_sun_management_VMManagementImpl_getDaemonThreadCount@8
_Java_sun_management_VMManagementImpl_getInitializedClassCount@8
_Java_sun_management_VMManagementImpl_getLiveThreadCount@8
_Java_sun_management_VMManagementImpl_getLoadedClassSize@8
_Java_sun_management_VMManagementImpl_getMethodDataSize@8
_Java_sun_management_VMManagementImpl_getPeakThreadCount@8
_Java_sun_management_VMManagementImpl_getProcessId@8
_Java_sun_management_VMManagementImpl_getSafepointCount@8
_Java_sun_management_VMManagementImpl_getSafepointSyncTime@8
_Java_sun_management_VMManagementImpl_getStartupTime@8
_Java_sun_management_VMManagementImpl_getTotalApplicationNonStoppedTime@8
_Java_sun_management_VMManagementImpl_getTotalClassCount@8
_Java_sun_management_VMManagementImpl_getTotalCompileTime@8
_Java_sun_management_VMManagementImpl_getTotalSafepointTime@8
_Java_sun_management_VMManagementImpl_getTotalThreadCount@8
_Java_sun_management_VMManagementImpl_getUnloadedClassCount@8
_Java_sun_management_VMManagementImpl_getUnloadedClassSize@8
_Java_sun_management_VMManagementImpl_getVerboseClass@8
_Java_sun_management_VMManagementImpl_getVerboseGC@8
_Java_sun_management_VMManagementImpl_getVersion0@8
_Java_sun_management_VMManagementImpl_getVmArguments0@8
_Java_sun_management_VMManagementImpl_initOptionalSupportFields@8
_Java_sun_management_VMManagementImpl_isThreadContentionMonitoringEnabled@8
_Java_sun_management_VMManagementImpl_isThreadCpuTimeEnabled@8

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 778B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1804ca53d54dec1029000e268593bc21

Headers

File Characteristics

PDB Paths

Imports

java

jvm

advapi32

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 192B

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 1024B - Virtual size: 778B

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 192B

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 1024B - Virtual size: 778B

.rmnet
Size: 56KB - Virtual size: 60KB