ClseHook
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
OpenHook
Static task
static1
Behavioral task
behavioral1
Sample
15bc307022cddd7dd677bc4bef1f0e7c_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
15bc307022cddd7dd677bc4bef1f0e7c_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
15bc307022cddd7dd677bc4bef1f0e7c_JaffaCakes118
Size
30KB
MD5
15bc307022cddd7dd677bc4bef1f0e7c
SHA1
33dd6048049af36f1eef4d968bd5b81653b2a6be
SHA256
c4dc9024e3f35d2635686b1b34c10e909d59bbdb305304daa800bceb0434b734
SHA512
0597dcfab6ef42e366f3b9e26511cd72383316f360bb3324ae9e2ca4dc4b89243e7aa87fcb52f56e87e85ae1ef733c3803284d36f5327cae1523be3719f92af3
SSDEEP
384:0yuzqkH7ySFy8JjlVmbIEnok96FRW+UToqv6vi9TSpIK+BjYzU4AzdhP52S4p+Ft:oLM8JjlVmbpNqRW+Up0ASpMjndhP8y
Checks for missing Authenticode signature.
resource |
---|
15bc307022cddd7dd677bc4bef1f0e7c_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
ClseHook
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
OpenHook
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ