CancelDll
LoadDll
Behavioral task
behavioral1
Sample
19a1094c958783cd7e3bedf708658864_JaffaCakes118.dll
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
19a1094c958783cd7e3bedf708658864_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
19a1094c958783cd7e3bedf708658864_JaffaCakes118
Size
90KB
MD5
19a1094c958783cd7e3bedf708658864
SHA1
41ccc34cf810c5db412b999f7180ec0fcba59c28
SHA256
54663e930a24b05721b981976a5d6271e62146607921c253a2a037b04a477f25
SHA512
3c03edbfa06d511f4ce284e8a23cef722afb2bcbcf0bcd47131d9eed97875fa63c4261530b74155c2c985e9caad2696158232539bdc444dedcc08bae7fb90920
SSDEEP
1536:SQclh8MIwu5+oYzgePIcAJfpgEMhQwud+ztEl7HLjqmUSvl:ahdIw/oYz9PIcgpyuDJHnjt
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
19a1094c958783cd7e3bedf708658864_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE