CancelDll
LoadDll
Behavioral task
behavioral1
Sample
185c7514f065f142fa36c36bdd0d9917_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
185c7514f065f142fa36c36bdd0d9917_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
185c7514f065f142fa36c36bdd0d9917_JaffaCakes118
Size
88KB
MD5
185c7514f065f142fa36c36bdd0d9917
SHA1
94680669540f3c2e4d3c08f20638f43611c5f89c
SHA256
1891430ba85e5c2670afe1bb3d742be29037e691f984dc90ef0cc2af5b285e2c
SHA512
894078b9d17c5b9ccc6456197ca1fa3188ba84de8e50fb28c703d469afc9a1bacfa6807d214282e585f00b913a00642b53d2406fb876702974eb48d8ead8ec55
SSDEEP
1536:UdVYsWgcQV6w/jdt9YD6QcZCcd/zhB7FxMUFMgU7p0OD+ilFKZg/Kuu:Ud5W8kw/jdt9YDJyCcd/91FMgU7p0O6b
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
185c7514f065f142fa36c36bdd0d9917_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE