DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpOff
JumpOn
ThreadPro
Static task
static1
Behavioral task
behavioral1
Sample
211cb0ab275c3274877e246c93169133_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
211cb0ab275c3274877e246c93169133_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
211cb0ab275c3274877e246c93169133_JaffaCakes118
Size
116KB
MD5
211cb0ab275c3274877e246c93169133
SHA1
73e8aed2a316e67a58cecd1040e22f9b82fed77b
SHA256
cac11ab2eea3835adf397ecbfe6dc5dcb63fcfb90031859fcd4bb36cd933bde4
SHA512
226f0474ee346b97514f2b5b11d27d26a4f90d73694dc644235dbc3bac19933ddf6c351131ea7ca872c0f7f2da2deeb9258591155ce29138a01a459d5a78e96c
SSDEEP
768:9oiRqZO5QGSEoHMJ55y8ACpbIgfH/YRC3z1K9elx16xyRB1eacTLLyojOleN0GhI:9vRqZkQjekoi6dHo0RRQXNbe
Checks for missing Authenticode signature.
resource |
---|
211cb0ab275c3274877e246c93169133_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpOff
JumpOn
ThreadPro
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE