GetLevelAndItem
SetDIPSHook
SetMIRSHook
Static task
static1
Behavioral task
behavioral1
Sample
f8dd6f6f30e5074803311cc6cb8cacff_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
f8dd6f6f30e5074803311cc6cb8cacff_JaffaCakes118.dll
Resource
win10v2004-20240412-en
Target
f8dd6f6f30e5074803311cc6cb8cacff_JaffaCakes118
Size
10KB
MD5
f8dd6f6f30e5074803311cc6cb8cacff
SHA1
7f733aed9ad44b8ef78511079f56784f4e0f072c
SHA256
cff605a56ffb03c0bed87206a0c0e415eb1224b3750682f0fd8e78fba5404887
SHA512
a9af511b5e94b89b0a88cd3df5bfe91c1e4d53d6a6283e206e102195f1c697133422285f308340313dc2ea8b512aa10890f62fd590e42e5eaa321b7591c26317
SSDEEP
192:SxS1Vg2MLnoThJ5WDufjv6kDBIwoQCSi/lkF9Y:3eoThJYDuf76kdIwHPmm
Checks for missing Authenticode signature.
resource |
---|
f8dd6f6f30e5074803311cc6cb8cacff_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetLevelAndItem
SetDIPSHook
SetMIRSHook
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ