DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
4815107e67e1bae3f2c3eac65a1635db_JaffaCakes118
-
Size
239KB
-
MD5
4815107e67e1bae3f2c3eac65a1635db
-
SHA1
6e751df15ba3a42c86944835ef23166e34e4d326
-
SHA256
d70c8bb113b3b0c70282a6aa5197b851032d7edda8a4b6ac2f68a13d94fb8452
-
SHA512
51d96032695ee76259c730dfd782aca21732212331cb782ee0ef28250c4289547535fd632e82073c42ed29433005f4452127f8739651175c6f59f0de2649e592
-
SSDEEP
6144:BOdcM8GtEQRmH2tPedG0zPbIiLB2gMy2HsSFVqUxHI:Yd58puPedPzUiLBWpFoiI
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
4815107e67e1bae3f2c3eac65a1635db_JaffaCakes118
Headers
Exports
Sections