DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
5c2b534b2a6fb6618f317f49408f75b3_JaffaCakes118
-
Size
232KB
-
MD5
5c2b534b2a6fb6618f317f49408f75b3
-
SHA1
31083402939b695eceb96f49b52d99a35fbbc67b
-
SHA256
7cc62abb8cdaff6bc1547943f7807328fb622f7053b18928d4e509840cad57aa
-
SHA512
e63a2a073baa2ee7808b8636764a86cd54491eb757869fc642a300d03cffa594d9231742f0d6a995d7f40fe0f805c9443ba19d718b35624b13d7fb62f16025f8
-
SSDEEP
6144:gB6a9pHgxveZ4AgzxJm/hy08Id76C8GlHBUQZ:gD9VrlgzxwyaeGnfZ
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5c2b534b2a6fb6618f317f49408f75b3_JaffaCakes118
Headers
Exports
Sections