Outt
Sett
Behavioral task
behavioral1
Sample
1a8814f31a98956841863f8116f7bceb_JaffaCakes118.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
1a8814f31a98956841863f8116f7bceb_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
1a8814f31a98956841863f8116f7bceb_JaffaCakes118
Size
66KB
MD5
1a8814f31a98956841863f8116f7bceb
SHA1
eec1e8f754bee929b50e62a6df3b809509eeb845
SHA256
65439eeb64e62d696a14ace6cf88f1aea7298bdda23f1862a65a5bb22fc55a99
SHA512
7face1fe7657a52db31cb60ddd3ceaf7e3c8afc4c9b8526023e43879db8d62e01425e1e62bf9f6e4cd24fd4a27e2cd8ba51dbf59a7acb5d448c3a07f3f1159df
SSDEEP
1536:EG4B09Q0h3uktYPVVAxHsUKz/q8fxyKhJqpDKY3+:EG4Buv2PP//q8ez3+
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
1a8814f31a98956841863f8116f7bceb_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ