ChangeMe
GetFileVersion
OutPutText
RegisLongers
Behavioral task
behavioral1
Sample
3d8822e6d2c9ae060e21d816680824a2_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
3d8822e6d2c9ae060e21d816680824a2_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
3d8822e6d2c9ae060e21d816680824a2_JaffaCakes118
Size
918KB
MD5
3d8822e6d2c9ae060e21d816680824a2
SHA1
1420cfe3f91cfa8b3afcde1effe57173f90458d0
SHA256
bca51f0c01495a3e2f6dcc82e3041c58070af1497323a90a54ba3d104d0ec3e7
SHA512
4b9c9c82c00311592327e3d2750a1ef5e707beba2752918fa29d87202ea887b9ece3c61f664f8823a7ed5803781ca3b64ac4f3afe318af16056cb22eac808176
SSDEEP
24576:mWXx3TN2sd8dxMp410YQXdFLHDxOO+xY3dCpKBs0j2j42:mWXdh2sd8vuYQX3h++3dgKBs0jH2
resource | yara_rule |
---|---|
sample | aspack_v212_v242 |
Checks for missing Authenticode signature.
resource |
---|
3d8822e6d2c9ae060e21d816680824a2_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
ChangeMe
GetFileVersion
OutPutText
RegisLongers
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE