_LOADLIBRARY_DUMMY
_RunAs@16
Behavioral task
behavioral1
Sample
60fb4438c6c97b955694ab8e2ad2cba5_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
60fb4438c6c97b955694ab8e2ad2cba5_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
60fb4438c6c97b955694ab8e2ad2cba5_JaffaCakes118
Size
118KB
MD5
60fb4438c6c97b955694ab8e2ad2cba5
SHA1
42965b628f2e81f4c40bd9567f0978f82a7d20b2
SHA256
89c3b05641b388f024946fe4cc9d147c007fe839ddfe848c593be53d71cb75ef
SHA512
4e516b5960574c95723b229e8061f2055a483b4809bb678e821fbb25bf2143c7bc962bc2eeae1bb17ef1bd94b1a20f4b6dfca97d1ad71066ffb332a331de79b2
SSDEEP
1536:/cDDS7LFiLjnavBSsOnOonMaPJtSNBeAtiaPnouy8QfG06g:qIFYjnav4bnOAMaWeAtiqout6W
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
60fb4438c6c97b955694ab8e2ad2cba5_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
_LOADLIBRARY_DUMMY
_RunAs@16
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE