Outt
Sett
Behavioral task
behavioral1
Sample
36777df4046819d1c0a9d5b5faad6bcb_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
36777df4046819d1c0a9d5b5faad6bcb_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
36777df4046819d1c0a9d5b5faad6bcb_JaffaCakes118
Size
57KB
MD5
36777df4046819d1c0a9d5b5faad6bcb
SHA1
24c42dfe7e8af4504bf155c9093b7d9e2dfb5b00
SHA256
0d5fe217569fc5d549f0e48519a41ad241d566e5a34f672e4535ba7a6e7b6f1a
SHA512
8531e41fd8b48a0608ae759a1a0a6d804e9b29f0e332846eb34cb12fb0c6e55c6f1093aa1235656796aad330d212c8505308faa21eb830e7d9f7798b584ad252
SSDEEP
1536:Mq/JmJSP+TEkHzXG8izuAXbt/GKS+z3jt/E2i:z/JmJSP+TEEzW8QuArtPDVE2i
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
36777df4046819d1c0a9d5b5faad6bcb_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ