DllCanUnloadNow
DllGetClassObject
Cgmnama
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
33e6eebad5e43e8008def430a6b61333_JaffaCakes118
-
Size
70KB
-
MD5
33e6eebad5e43e8008def430a6b61333
-
SHA1
6d8b931e686713ea91982401ecff89c21f0db139
-
SHA256
4b84da48d3f31d9bf4c3854eca3583daebec54892c1e5e3cbb2f2b08215b3e6c
-
SHA512
d058531c27c6fbe53a123a3637ff11a547ae942f24c706854823686d355e68814e6dc75d793a4c159e91da65583b7a28c61dfd72bf8c1442b7f6e51b964974b5
-
SSDEEP
1536:3XLwtq0c49MKioFjSz1UFLE/dW5MMbKl89h9LMTlp/8zWqlLqw7t1FVSr77GnouL:3XLwt/FiaU1Uq/dWFbNr8azD7VS372oo
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
33e6eebad5e43e8008def430a6b61333_JaffaCakes118
Headers
Exports
Sections