Outt
Sett
Behavioral task
behavioral1
Sample
617bcd9a89082942cfceb7daccbdac5b_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
617bcd9a89082942cfceb7daccbdac5b_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
617bcd9a89082942cfceb7daccbdac5b_JaffaCakes118
Size
53KB
MD5
617bcd9a89082942cfceb7daccbdac5b
SHA1
f7144805585ae045bb7dd91864217881c0e4b223
SHA256
29cf07a8c07d66b9e8315a90c42f274cd728a889f15b8a23b1fe482caea96467
SHA512
4b5e13d330881238c9d2854e26eee9e3645eda85a42bd76b4d0025dcb47f1a1f522ff895150012b08e8266e542d1c4f0c43d62367664ecc3700c0f78724181c8
SSDEEP
768:GbvLDaaMact8TwB2k7aPjBqy2kRaLpEPcVh1XVtPTZkvev4VLPPw53yZjcj0Z2GG:evcsBjA1EPcNbZkve4VLy3ymsUl
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
617bcd9a89082942cfceb7daccbdac5b_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ