DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
38d6edde9809cd2f95921b58ffe3f2d7_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
38d6edde9809cd2f95921b58ffe3f2d7_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
38d6edde9809cd2f95921b58ffe3f2d7_JaffaCakes118
Size
90KB
MD5
38d6edde9809cd2f95921b58ffe3f2d7
SHA1
406f7463c1fef737c3cf6b1f065ac50deefa2525
SHA256
d632b1b1f606a28018a7dc8215cfc470ef7c86666fdd7839b128a8ee200f31e9
SHA512
82304a4ac393de5d44e68748920d1f1d40b79868c36f61d8c2ed54a051d11dda53637bd8acf3fae8f815bc256922b54310119de5f3ed5d7d0943031a98e6a55e
SSDEEP
1536:WY73mGEFz/8ERxHx9CTOUgbduXGwxv2CHxRc085SqnWBdAUHTOUu:WO2zPTHxsTOUgbAXGwxeefcsbVTOUu
Checks for missing Authenticode signature.
resource |
---|
38d6edde9809cd2f95921b58ffe3f2d7_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE