RegisterDll
UnregisterDll
Static task
static1
Behavioral task
behavioral1
Sample
16c298467319cabd12601a571c48d1ba_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
16c298467319cabd12601a571c48d1ba_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
16c298467319cabd12601a571c48d1ba_JaffaCakes118
Size
54KB
MD5
16c298467319cabd12601a571c48d1ba
SHA1
cf400b004817be39ddc9e0b29bc0e5abd7e38110
SHA256
3132206ff44c490842249e3b93f3537da716e96822a40810179fcdb01a2a0fe5
SHA512
f9291f1ca381642d68765c766b0b8e5fa8dfb424e9678ca280025f4890ca7323718f38d6890827fbf55fd1ba7a371417689da26b2aca29bfae32546f61414282
SSDEEP
1536:R1tyR1Bq9oioN3MVP8rtxZO56mvE1SuoRzRm7X:QRn6VPgHrI5uoRzQX
Checks for missing Authenticode signature.
resource |
---|
16c298467319cabd12601a571c48d1ba_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
CoInitializeEx
SysAllocString
?_Xlen@std@@YAXXZ
_errno
RegisterDll
UnregisterDll
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE