RehhcSSDT
ServiceMain
winsafe
+D$�D$����
Static task
static1
Behavioral task
behavioral1
Sample
2f9affbb52c12c81c618d8e523839dde_JaffaCakes118.dll
Resource
win7-20240708-en
Target
2f9affbb52c12c81c618d8e523839dde_JaffaCakes118
Size
46KB
MD5
2f9affbb52c12c81c618d8e523839dde
SHA1
81f2e5833e4e9a975f7544ce9aab2da5bfb95c82
SHA256
b93a18b64203ce398dbe23b524fe136cfd9a09d120a1380c1bd2c20fc4ff8a3f
SHA512
6c0c10bf46fbf6dde098b9b247b43d98ae5452b078b6fdbd843b2bb746f550ef8a523b46e16708e7c28d3018f6b0d287ad269886bd4c8d34176b094c146fcf78
SSDEEP
768:dp/7CD2UsB64IEnBSFcGkbZY4/3jgUZ2ft9m1LB0NBdxNnnimQ2fBrctr5+c42U3:dpjm2b6wBSCGEZT30W2ft9m1963n7Q2v
Checks for missing Authenticode signature.
resource |
---|
2f9affbb52c12c81c618d8e523839dde_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
RehhcSSDT
ServiceMain
winsafe
+D$�D$����
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE