CancelDll
LoadDll
Static task
static1
Behavioral task
behavioral1
Sample
fc4cb5092386f672508149ffdf45dc98_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
fc4cb5092386f672508149ffdf45dc98_JaffaCakes118.dll
Resource
win10v2004-20240412-en
Target
fc4cb5092386f672508149ffdf45dc98_JaffaCakes118
Size
74KB
MD5
fc4cb5092386f672508149ffdf45dc98
SHA1
e4b7d0a548cab11ff35c45b8acca2918a2573619
SHA256
7a7a77383535c37cb623459e9110d1bb67ec55627f1d5decc407686706578033
SHA512
932ab869bc02c6299319ef594160be96ba1b54de9b344951d25bd0c6244587fc9e6beda3da1291c72e514ddc50694f7f56e5df976a48b43d34d3c65553d092bd
SSDEEP
1536:ApcvBq2h8vA0t8jIDwqp9ZDzzhQUnB9tz28hzIXkHvtVj:Ap+hL3IDPpr/zhvZzdI0Hj
Checks for missing Authenticode signature.
resource |
---|
fc4cb5092386f672508149ffdf45dc98_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
DeleteDC
srand
GetWindow
CancelDll
LoadDll
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE