DllCanUnloadNow
DllGetClassObject
Nockpom
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
37505a35e3a3efd5340b3dfda2e164c1_JaffaCakes118
-
Size
216KB
-
MD5
37505a35e3a3efd5340b3dfda2e164c1
-
SHA1
1b0ce33952a60b526b22b18d492ff85ed5d6ea0d
-
SHA256
777cbd331739fa93db72cd1a3e3ec70d227281fb61e52a8d34ba60e1d43add54
-
SHA512
1f0ddae9eb1522117392bc36db2eca7a63fad5b289171c14db2d2336d9c069ca2a44416effd444ff751a02ab36a57be100a47897df9fd377b1f0f59c21ac1179
-
SSDEEP
6144:mhrl1NWPLfVYF3xqEhNR7mYd+Y2oSnOgM:2jWjVymYotoSni
Score
7/10
Malware Config
Signatures
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
37505a35e3a3efd5340b3dfda2e164c1_JaffaCakes118
Headers
Exports
Sections