CancelDll
LoadDll
Behavioral task
behavioral1
Sample
2cc8216c0e59f682c59ad8bc9f4d7a35_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2cc8216c0e59f682c59ad8bc9f4d7a35_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
2cc8216c0e59f682c59ad8bc9f4d7a35_JaffaCakes118
Size
123KB
MD5
2cc8216c0e59f682c59ad8bc9f4d7a35
SHA1
79ce397bf7bb85bb69fa61853e8ba16f9f865356
SHA256
7099b2a84a42ba17d7c107acf628da8daf2822fa080d5da282fc1c40d9c8eb47
SHA512
923074203748a60b9bf467eb2520a2a161fb3783190628125b2f046791895fb3e5d799af7be6110a352b4d9917af03fc1afa2b3b57f126b71f8edcb7a82774f8
SSDEEP
1536:qk9sQZTJD+QMfmnhBbgA6U7bVJqBR//xEDYUFHtJzrdoHcJ9pSSLTtuQy+Y8awdd:l9L1xm6hpbVcBtmLzzrdmI9EMix4d
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
2cc8216c0e59f682c59ad8bc9f4d7a35_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE