DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MsgHookOp
MsgHookif
Static task
static1
Behavioral task
behavioral1
Sample
2a6e1022aa999f1216716ee2e2441692_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2a6e1022aa999f1216716ee2e2441692_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
2a6e1022aa999f1216716ee2e2441692_JaffaCakes118
Size
47KB
MD5
2a6e1022aa999f1216716ee2e2441692
SHA1
8856278865e9b7d49bb66f871aebe18efd1a48f0
SHA256
d26015f82c4ef358aecddd4eb79f962244b1088b7007dc3b056c6f229a375351
SHA512
cca8bdd49d166bebfd0c97a995194178deb36745dd5f9ed7ffcd9df7e53d6db2ceab6e24b41e2c545b7d61839901df2203192a5f2b36f17b9f6d13c0abec79ed
SSDEEP
768:3BiCCKqhQIoCiEFLyBxRNAgOpiO5OpBl5YTL4NY0sKnaizbPMe44PibXChqpLXu:RGKqhQKNFLyBxRN3QiGOpBl2fahn1r7p
Checks for missing Authenticode signature.
resource |
---|
2a6e1022aa999f1216716ee2e2441692_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MsgHookOp
MsgHookif
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ