DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
5af6aa692e1a703c6d462c5ab9484ffc_JaffaCakes118
-
Size
139KB
-
MD5
5af6aa692e1a703c6d462c5ab9484ffc
-
SHA1
bf9c9ea74af3fa0561369bf6cdff88e02636fcae
-
SHA256
6aa14d2f0232e0cc57258f217587a33d035379361f3297cc87e8bb047c0ecd97
-
SHA512
f8386a85ca989d4079a4ade56ee426465fb0a337273c201695055dc60eac2a1a34996f69ba0a06cfe593183d1ae12a0a76878b8cb1ff9f3cbef53a8b717171ee
-
SSDEEP
3072:APQSeRuOqEMAw4/nbf6h1HvA9BUZvHUwaBdpkU2pKMfiO3n6QaorOBZ:APQSeRuZKw4/L6h1sU9ed67KwLao6L
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5af6aa692e1a703c6d462c5ab9484ffc_JaffaCakes118
Headers
Exports
Sections