DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MsgHookOk
MsgHookOn
General
-
Target
30dc4effd487dabe74006f117ca89f18_JaffaCakes118
-
Size
23KB
-
MD5
30dc4effd487dabe74006f117ca89f18
-
SHA1
25e606818c17141bcbd778e292ac8ab772034cdf
-
SHA256
605922afb0e69b13199cb710e2ea2e30628db4fda77842033d3dfcb104a75e15
-
SHA512
14bf359b9d507d6bace3e01f133cde274cfa3a165228516fe3323e1b999ec71f89410316441e1908209879bce989233844cc342415b0e4272558f95ec7749720
-
SSDEEP
384:mcxHRaFojkyz5k4jrM9GBLSg6hXkDmWBfckVN4R8dxsqACH:zHvkyz5x0AJbYuG8uqn
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
30dc4effd487dabe74006f117ca89f18_JaffaCakes118
Headers
Exports
Sections