My_ini
StartHook
StopHook
Behavioral task
behavioral1
Sample
0462367956b8e02440756eb75cf2efaa_JaffaCakes118.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
0462367956b8e02440756eb75cf2efaa_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
0462367956b8e02440756eb75cf2efaa_JaffaCakes118
Size
413KB
MD5
0462367956b8e02440756eb75cf2efaa
SHA1
17c661e0efd87dce7b79bcb409c6dd5abfa480db
SHA256
5b0d868f00be42c029d3b62406cece8c3a1b4f032e68bbbc51d4009ce07948a5
SHA512
68b3f746f3f407c070fa2c8858bb86e64468f5cd62140de2cd35b5db50736fe2147afdc263ef3e2b3554065dacfc3ccc4f97f97eaed18fe3e34ae9f56eed255f
SSDEEP
6144:n+ZIyvbAXj7UT5cI4c8bKCW3e0dZfFgCZTdsmnEliQDWf19nX5:ni30T7Kaj81dTdxGmnOhDInX5
| resource | yara_rule |
|---|---|
| sample | aspack_v212_v242 |
Checks for missing Authenticode signature.
| resource |
|---|
| 0462367956b8e02440756eb75cf2efaa_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
My_ini
StartHook
StopHook
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE