DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
02109a9c548708dbf6d6b2a1fe3e8372_JaffaCakes118.dll
Resource
win7-20240508-en
Target
02109a9c548708dbf6d6b2a1fe3e8372_JaffaCakes118
Size
442KB
MD5
02109a9c548708dbf6d6b2a1fe3e8372
SHA1
cda3fb6fec9597babff991fa30eefd078649d644
SHA256
dce25b7e9cab6c3925db0fece17e93d6af1869ea6c6632f2731488a62e25588b
SHA512
fc4bee346d54e50f0a0e256f9143d0fabeb924b82dd18cb9f74307dadf519e82438aa3a4ed210ff2a76f9abd976b64240de6dc9a803e548362ff5c739956279b
SSDEEP
12288:E8oLt9p7voqE8GOSlJAOBixoYPObvJzu+7YsAYy:2JHE8uNiJCK
Checks for missing Authenticode signature.
| resource |
|---|
| 02109a9c548708dbf6d6b2a1fe3e8372_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ