DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
2ebc2eda6bccccdf9d6a22b4bed550c0_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
2ebc2eda6bccccdf9d6a22b4bed550c0_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
2ebc2eda6bccccdf9d6a22b4bed550c0_JaffaCakes118
Size
140KB
MD5
2ebc2eda6bccccdf9d6a22b4bed550c0
SHA1
973cb60a918b9328ecf2f7efdd97a98405bade72
SHA256
c67db49d185828a90b0e4f010956fd735b7ad247f968f0373c05fb8e45e51556
SHA512
20208bff5609fe0ff7cc39c324756f1d496b29cfd4c6829f251d510c93788a769118ead1a6b7ac6f16040a15f46e8cdd2b9f4bee59fb66fcb6aa73f1d0f1b17c
SSDEEP
1536:RzbjWmeQP5LGIouk6bolCwikj8UwQCR6oF7+CCl6yzlv9cwNk:V/UIoT6ba3/gUwl74PI
Checks for missing Authenticode signature.
resource |
---|
2ebc2eda6bccccdf9d6a22b4bed550c0_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE