Outt
Sett
Behavioral task
behavioral1
Sample
227c7d411239ce9c34d4918fd3780139_JaffaCakes118.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
227c7d411239ce9c34d4918fd3780139_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
227c7d411239ce9c34d4918fd3780139_JaffaCakes118
Size
66KB
MD5
227c7d411239ce9c34d4918fd3780139
SHA1
c4a964affdf914e702532ca45b031a14332f3451
SHA256
390d38b5dbfe058fcc555d76ed8353b137429727f685d911aaa092a9a3c3ddf0
SHA512
2a48b6f8b77af89b81afc1006a57a79a16c376daa529f5635755f41374c3fcbb33043f940f6954dd960310d6da931033fc0abe4356f1cf267e5924c0e06ae747
SSDEEP
1536:n7ZLNPp9pZBMT0ojXhM9/V6eHAtMSkYAlCRI7L1FosnO:7ZpphojXh8dlWGY0iM1Fm
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
227c7d411239ce9c34d4918fd3780139_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ