DllCanUnloadNow
DllGetClassObject
DllRegisterServer
Static task
static1
Behavioral task
behavioral1
Sample
3ed9c0c3ffaeb3c8403bf77d4e134711_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
3ed9c0c3ffaeb3c8403bf77d4e134711_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
3ed9c0c3ffaeb3c8403bf77d4e134711_JaffaCakes118
Size
20KB
MD5
3ed9c0c3ffaeb3c8403bf77d4e134711
SHA1
624eabb77ac754f1c48b75731f45a803c469eef3
SHA256
a546879591f7b9025d447eba7758c571d56c841451b9841830b610680c0cb1ca
SHA512
6e11b0cafb854be93e986f5ea9b3ec0e479350f7654e5b261217d081f6e1dfef2a990b000592bf3c8af2ae4ae8227cc3137c7f74d30c188d92dde2f01f1d5e6e
SSDEEP
384:AKRfboNV2ZS1RFd4M/DpiIIDMTmNr+Tm6TmcTmC2jtQLiQiQVUP97ihTmtTm9Tml:d7CJQEQ+urgzedTZsONl
Checks for missing Authenticode signature.
resource |
---|
3ed9c0c3ffaeb3c8403bf77d4e134711_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
ExitThread
WaitForSingleObject
SetEvent
lstrcpyW
GetVersionExA
GetSystemDirectoryW
lstrlenA
MultiByteToWideChar
GetModuleFileNameA
lstrcpyA
lstrcatA
GetModuleHandleW
GetModuleHandleA
SetFileAttributesW
lstrlenW
HeapAlloc
GetProcessHeap
HeapFree
Sleep
RtlUnwind
lstrcmpA
CreateThread
CompareStringW
CreateEventA
CloseHandle
wsprintfA
wsprintfW
CharLowerA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyW
RegCreateKeyExA
RegCreateKeyA
RegSetValueExA
SysAllocString
SysFreeString
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ