EnHookWindow
UnHookWindow
fs448547aaaa
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
e2d0b5587ffad6859fc9764236a5f958_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e2d0b5587ffad6859fc9764236a5f958_JaffaCakes118.dll
Resource
win10v2004-20231215-en
Target
e2d0b5587ffad6859fc9764236a5f958_JaffaCakes118
Size
21KB
MD5
e2d0b5587ffad6859fc9764236a5f958
SHA1
e3136655c37fa7d68fc71ec7b6ce23d7c8f8eb1c
SHA256
4bb71cd5d745dd906421204b455337d92283d1c7a749e5b6781c0ea8f5858199
SHA512
11d643a52788481dce0c7233dcb75af3b04fd196e13e5bb23b48d2114f4d7be8488c49fbdebaab15aa4b744227871e05f39ec825219c7254afb6f38790d3e417
SSDEEP
384:V1PyZNjtU2mLAZMYQ5izPf7hyi/RGKmjGRqlzxsPVC:VNyZiRh+P0WUXGRGxsPA
Checks for missing Authenticode signature.
| resource |
|---|
| e2d0b5587ffad6859fc9764236a5f958_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
EnHookWindow
UnHookWindow
fs448547aaaa
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ