EnBHookBWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5
Static task
static1
Behavioral task
behavioral1
Sample
03fbd692373d259aa49042c167c526dd_JaffaCakes118.dll
Resource
win7-20240221-en
Target
03fbd692373d259aa49042c167c526dd_JaffaCakes118
Size
521KB
MD5
03fbd692373d259aa49042c167c526dd
SHA1
c7debeff17831d13913341a56d0620f832083bef
SHA256
9ae3c383f3dc0fad0175a3cd5fc4d5434ac35202237242b16bdc1486bb5242cc
SHA512
43023138f5c2ec19d162907353794e16bf30b0aff60078b5be106af01fb6c1261b4dcb2c2107e137c1b21f8c5967ddde6b6731266239e5f0932972bc98ca17bb
SSDEEP
384:zBPyZNjtU2mHkKxv3S9Xh6h6q1G2TblJR6J6xBHzrWRk2rGlGlGlGlGlGlGlGlG4:zZyZNm3I6cq1HBkwrWRkq
Checks for missing Authenticode signature.
Processes:
| resource |
|---|
| 03fbd692373d259aa49042c167c526dd_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
EnBHookBWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ