DllCanUnloadNow
DllGetClassObject
Oclkonm
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
632cea662b91376f783f5c296e6da7e5_JaffaCakes118
-
Size
70KB
-
MD5
632cea662b91376f783f5c296e6da7e5
-
SHA1
a177260cfb3cffdf44c4dbef61074d83fdd6f60c
-
SHA256
0df5566ac049e952337e4703dea8bde29c68da2cc9cb7fe94e8c2b833b1e5d54
-
SHA512
25613fd1ae930c97249aa8247040a85085ba0cc3767c9e49bf70f210888e3e9d396bb782006c34c35049c929c8785e9c9c8b7fbdcea14c36b749d90e90a11f72
-
SSDEEP
1536:KXLwtq0c49MKioFjSz1UFLE/dW5MMbKl89h9LMTlp/8zWqlLqw7t1FVSr77GnouK:KXLwt/FiaU1Uq/dWFbNr8azD7VS372ot
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
632cea662b91376f783f5c296e6da7e5_JaffaCakes118
Headers
Exports
Sections