InstallHook
UninstallHook
Static task
static1
Behavioral task
behavioral1
Sample
85b8c9ab498d9282c5d7900bd4e0e12e_JaffaCakes118.dll
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
85b8c9ab498d9282c5d7900bd4e0e12e_JaffaCakes118.dll
Resource
win10v2004-20240426-en
Target
85b8c9ab498d9282c5d7900bd4e0e12e_JaffaCakes118
Size
140KB
MD5
85b8c9ab498d9282c5d7900bd4e0e12e
SHA1
8a1ef05104a3949116c95355e170c7bf74a11b4c
SHA256
95b9df255d873cde24e8e3b8d16082a5ca90819844f9d07b17eb18050c371687
SHA512
a55392e7fa4d938a6d363da856cf7d8f5f0ca1ef202306db5817d5b80e813143dd5b5ea654e15b3ccbfb0b750f8ee0406e6aaa121d776c61b9a203af440ae457
SSDEEP
3072:CsgwEvM3z0BQg/S3jSEUl+Welmef2Aze001gCm6+f0Ii7:Csge3wXCQefZCm6+E
Checks for missing Authenticode signature.
resource |
---|
85b8c9ab498d9282c5d7900bd4e0e12e_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
InstallHook
UninstallHook
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ