DllCanUnloadNow
DllGetClassObject
Ohkijjk
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
5fdc1fc018c6f4224ed84cc8be26d8f8_JaffaCakes118
-
Size
70KB
-
MD5
5fdc1fc018c6f4224ed84cc8be26d8f8
-
SHA1
7e5cb3712d0eb215f8287b4621d87afc07d0f4fa
-
SHA256
a9d19ca40586210fc4fd60758f5efc0acbedb02f87dea3c56261826275cd56c3
-
SHA512
6033ecda7f715602f492c40ba015214fca71123eb0c8c70cc3d5bb17be7457676ee13f5dd514a1c26326004ced89865935a72dc86a2398d9b63d1ee0a8286bcf
-
SSDEEP
1536:0XLwtq0c49MKioFjSz1UFLE/dW5MMbKl89h9LMTlp/8zWqlLqw7t1FVSr77Gnout:0XLwt/FiaU1Uq/dWFbNr8azD7VS372oS
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5fdc1fc018c6f4224ed84cc8be26d8f8_JaffaCakes118
Headers
Exports
Sections