DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JpHookOff
JpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
05d92075f157d464f1e5c4606066e1ae_JaffaCakes118.dll
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
05d92075f157d464f1e5c4606066e1ae_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
05d92075f157d464f1e5c4606066e1ae_JaffaCakes118
Size
82KB
MD5
05d92075f157d464f1e5c4606066e1ae
SHA1
3b96f8ee9a08ceff3f51227daa8b25968ea9c047
SHA256
cf7958ac25dbd0d8ca016c8224813d30c8ed0c59961b17750f5d29f87f22726c
SHA512
934f0f9ac0f92969484fef7d9727acce7c2217f3302e81fc43d56618b846209818eabdcb83515278729a9cafd909abf04cb9aedf8339432054801a15019a4bb8
SSDEEP
1536:ciARpSGdFwu//e9cq/EHL9pDgDWBlK63suSZ1aQX92p6RzztXTq/EC:ciARKG/nq8hpuosuOP2pWztDq8C
Checks for missing Authenticode signature.
resource |
---|
05d92075f157d464f1e5c4606066e1ae_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JpHookOff
JpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE