CancelDll
LoadDll
Behavioral task
behavioral1
Sample
4030b44b33df1f4a12ce9c4f88374db6_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
4030b44b33df1f4a12ce9c4f88374db6_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
4030b44b33df1f4a12ce9c4f88374db6_JaffaCakes118
Size
104KB
MD5
4030b44b33df1f4a12ce9c4f88374db6
SHA1
ef6b41bb62f906002682564b1e42730c84d8a35f
SHA256
db738bda09b5d8960cc9f0c5facef044a6044b10eb457b5a237b9d8887fdb2bb
SHA512
d6cc266b67439f505a2440ce075aec343b9d3e4d490463461b2e0dd604ce4cd77441e69f3f47f32b85cbcfda54c2cae47722f4c9a136e97f46b3751c08fb9f63
SSDEEP
1536:zMHSIHT9yM8vKOTn+xgFOPe8YvEtmKsxmEF4W+DGUa3v:z1QT0hvKOT+2cPwMIM+9
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
4030b44b33df1f4a12ce9c4f88374db6_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE