Outt
Sett
Behavioral task
behavioral1
Sample
65f6c7933131e40c91288582890887dd_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
65f6c7933131e40c91288582890887dd_JaffaCakes118.dll
Resource
win10v2004-20240704-en
Target
65f6c7933131e40c91288582890887dd_JaffaCakes118
Size
49KB
MD5
65f6c7933131e40c91288582890887dd
SHA1
fbfcea4eab09759ca9508e3c50c5c8f162dfeefd
SHA256
3b4d7b00145e65b09e1d755ee337ecc31529c62db24a762e8a12fc0462ac0ee6
SHA512
88e8a09a88029e7899be8ffdaabd77e45d594378f18dc791446b9d9d420d94ab6463c21aaccb3c932475ddf473159abaa1445afccd024c56b5703fca7b90a773
SSDEEP
768:nbY4lG+h/q65Q4bxFHoFgYEd0p7zhJlStHMq7V6wOFE7SMl6eaqVg:EGn9q66SxWxQ0p7zhzSi8dllRVg
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
65f6c7933131e40c91288582890887dd_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ