DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
5b3376c6101d6f6212a830b996f5ffa3_JaffaCakes118
-
Size
249KB
-
MD5
5b3376c6101d6f6212a830b996f5ffa3
-
SHA1
e9e5341d96d931c208c155898b3cda0208bc85da
-
SHA256
f27235a86d6d12db9148034cb74731472e9a31b55f2600031aaa91946e382680
-
SHA512
884149c269114c99c396e8582b7967035abd3be014d08632c6033f69b2eee4a9b3013f09c3d4f39afa6339920802adf71fbadad43d2cc9cfe98eeefa1efbc0ee
-
SSDEEP
6144:HqFJ2wUwqb5XdewYMviYcW8/26+1HyG60l0xSt71dW+3Ou:KuHwqb5NKM6YJ1fixSZmc
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5b3376c6101d6f6212a830b996f5ffa3_JaffaCakes118
Headers
Exports
Sections