atWXsCNJyU
fvcUPjsOiNS
lqZehpniRNxG
sKpIpPPg
zCohTPDBQJXo
Behavioral task
behavioral1
Sample
278fb93621077ee08cfe7b18f3b2b3c1_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
278fb93621077ee08cfe7b18f3b2b3c1_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
278fb93621077ee08cfe7b18f3b2b3c1_JaffaCakes118
Size
172KB
MD5
278fb93621077ee08cfe7b18f3b2b3c1
SHA1
4d18f43317cff506ac82ee3ce98e025c33dee4e0
SHA256
91253c5a9a3227622fab2052328b4252e6a72f01c8a9cfb017e82d0af430275f
SHA512
4436386b27543625ab8d0775e61e801b23202136511380594e4beb273e49199c3d6c7adeaedf145b8684c9b216bac3d3529fd971cc19a0cd2a4b4e8a9c8908b4
SSDEEP
3072:NkbO8ovhleoiw+9sCdLHUeqtve2UX9GPrYoF7+tZR036OMfAYj:ebO8ovjP+fRhqtG2UX9AF7y0KDf
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
278fb93621077ee08cfe7b18f3b2b3c1_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
atWXsCNJyU
fvcUPjsOiNS
lqZehpniRNxG
sKpIpPPg
zCohTPDBQJXo
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ