CancelDll
LoadDll
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
2c35b1c1fe5de16ca56aa1895b9f9cb0_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2c35b1c1fe5de16ca56aa1895b9f9cb0_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
2c35b1c1fe5de16ca56aa1895b9f9cb0_JaffaCakes118
Size
102KB
MD5
2c35b1c1fe5de16ca56aa1895b9f9cb0
SHA1
ea1f5136b900c6f73eb1a7f5f0ff9af549f84aec
SHA256
ed92f50e63da06ba1cb705afd1117f6c25bccadbfdc203ecf733e3f33cb52d68
SHA512
a73b55aecdc3374c6240b20b0669e7d883e4bbfaafbd2de624ecb47aafdf033fc04f5f4b03c00cca4c5e8ef3b17812bdcb22f20fd9cc48f0dfae5b7a1651766b
SSDEEP
3072:7RCVcAHzYRjDfgVYIzfoHOJFykZdHUSVVaRKeR8W:7syzR/8eOekbHPURQW
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
2c35b1c1fe5de16ca56aa1895b9f9cb0_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.