?GetOS@Utility@@SAKXZ
_LOADLIBRARY_DUMMY
_RunAs@16
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
1364c154f89e29d21b2777233cec8017_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1364c154f89e29d21b2777233cec8017_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
1364c154f89e29d21b2777233cec8017_JaffaCakes118
Size
31KB
MD5
1364c154f89e29d21b2777233cec8017
SHA1
03de4db2a7f0b7fff31f2cfbde818b5bb59e8c1f
SHA256
424b01b39ccd257fa8fdaf40ebba3b9cd499420738b7d16395d664779c6f2df5
SHA512
edf98059d2d696e315bd144d1c8ac2fa76e44ca3b88cd781ff75dbd1ba546cd98dd047040c457137e01993e1ff12d24c7ec1aa07efcfb6c68ef994474ed16d6f
SSDEEP
768:2Mg0WzDlSSbxaRiZeSoV90z3oIYneRR11qvWvL:pW9PbdZmV9o3keRR11GeL
Checks for missing Authenticode signature.
| resource |
|---|
| 1364c154f89e29d21b2777233cec8017_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
?GetOS@Utility@@SAKXZ
_LOADLIBRARY_DUMMY
_RunAs@16
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE