HideProcess
KillTask
Static task
static1
Behavioral task
behavioral1
Sample
29748a6b21c05e8934ead7e58f46257e_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
29748a6b21c05e8934ead7e58f46257e_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
29748a6b21c05e8934ead7e58f46257e_JaffaCakes118
Size
44KB
MD5
29748a6b21c05e8934ead7e58f46257e
SHA1
064c5bb8c6fa4dc6589847a4c193f999719c62fa
SHA256
fa98e56a52ee1b36edc086ae74864eb154e3163cd110ca91207ba89d0a4bb564
SHA512
41323329c22c4c35fb5758ee8fef2a990ad8690ee4e18089dfa7c501f83bed2222b8f7a51f49485aa74a485838607f3935c05937de4670beea5f354d6c7ca9d7
SSDEEP
768:3CpqOQUw7qHJB2YQL/x6e7rwd9pa/5GEftEJfYSt43tf80oG8xM:ypqOQYHTBQDxnoa/Kg7180oXxM
Checks for missing Authenticode signature.
resource |
---|
29748a6b21c05e8934ead7e58f46257e_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
HideProcess
KillTask
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ