DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
42c703e6edf9219e3664d4793d90d585_JaffaCakes118.dll
Resource
win7-20240705-en
Target
42c703e6edf9219e3664d4793d90d585_JaffaCakes118
Size
620KB
MD5
42c703e6edf9219e3664d4793d90d585
SHA1
7d9eec74e999148e59d74bc447fa9cac0d917196
SHA256
b32b8f77bb87cf639bc0c2a59ba8ecf8efd47e95c0e90e2a703db7920aa25ca3
SHA512
563d85d9133ac4d028073407e201a6d4ca09011b395cf25b65a3fc8ba263a3b66f97180b0ee9a8a5c3e5267d1a0e3393bbc030d96f1fc3fc823660ef70862d39
SSDEEP
12288:TDwP/V7AnKd58GfOcrruYsPoZvgKX2lLKXN:TDq95dCGlXuWgcmU
Checks for missing Authenticode signature.
resource |
---|
42c703e6edf9219e3664d4793d90d585_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ