EnHookWindow
Skip3546Wall
UnHookWindow
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
00100da6ba0ffb979b42d4c4aa59a328_JaffaCakes118.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
00100da6ba0ffb979b42d4c4aa59a328_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
00100da6ba0ffb979b42d4c4aa59a328_JaffaCakes118
Size
24KB
MD5
00100da6ba0ffb979b42d4c4aa59a328
SHA1
b1f371e0c086c3aa3b25dee3ef0c412867088ee5
SHA256
4d8b76d2288ad9949d5f2d6c2c99554edef0a5bf3206d64d4a3549bed3e3fb2d
SHA512
af8a34ea8e4ffcd075a0f535a4277db9eec7e40bb866a86f9f6c78d303cf6d7f6d0b8fb2620427b6218c6e0e63c4891f7bc008c40e5a61d62e204e26ec3416c2
SSDEEP
384:GfdD9d6G4f/r1PcOXzqjyN8xTOzKlgwqej+dkEpTNWzwIdvVQhKdDo:GfK0OjAyKlgwqe+dXNmwIdtQhKE
Checks for missing Authenticode signature.
resource |
---|
00100da6ba0ffb979b42d4c4aa59a328_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
EnHookWindow
Skip3546Wall
UnHookWindow
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.