ClientMain
DelFIlex
Install
ServiceMain
Unstallx
UpdateX
Static task
static1
Behavioral task
behavioral1
Sample
4c37f3921a63c6a095b8e04e47e91bbc_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
4c37f3921a63c6a095b8e04e47e91bbc_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
4c37f3921a63c6a095b8e04e47e91bbc_JaffaCakes118
Size
129KB
MD5
4c37f3921a63c6a095b8e04e47e91bbc
SHA1
3d85032c2e6b16aaa2cfa4fb9256961fe45831c2
SHA256
d87ee0eab84d99c06d422bc6ceace9798af768ac6edd24a72480658c0a56d2e8
SHA512
84b6a135736e7ffb7e6301a58c848be273ea2d91e714b8abc4f2ee8f424773c3312d74be03a824bb8ae99775fbdd07d5c558ac8187519058b09d0fe76fb6ae02
SSDEEP
1536:ZO8ZDOA5+JkFI9VciPrp83pnZo5WcZUlbf1erRWPAqiXJDwoEdG1CLl0SyZmIO/g:9t5+oYp8Qqlb9eFWPIwosGs/QyiT
Checks for missing Authenticode signature.
resource |
---|
4c37f3921a63c6a095b8e04e47e91bbc_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
ClientMain
DelFIlex
Install
ServiceMain
Unstallx
UpdateX
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ