Outt
Sett
Behavioral task
behavioral1
Sample
6704e069438f1bd03dad174a4463bb6a_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
6704e069438f1bd03dad174a4463bb6a_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
6704e069438f1bd03dad174a4463bb6a_JaffaCakes118
Size
72KB
MD5
6704e069438f1bd03dad174a4463bb6a
SHA1
6d9a25e581ecb7b804a829c3e8cf0c14296566f3
SHA256
b1d1bf3b16eb554ff7d96a4c1e10ae6ca57833164104ea434bf03f5cc3ad19fc
SHA512
831598460067da5c92f8799b219df84dfde049ca174bd4f05c75cf1a7c7240d4e22e3cc5dbae26c51577c67e31a9693870c4a0d64a94713d1b65c4e8e0f560ae
SSDEEP
1536:1zExMwCGQ2j53Wk8Yt4n1eJZo4Zp4Ylic5sWq6U053yyJi/bxYTcB6AJB:1I+wCGv4dd2ZSwic93/i/bWT66OB
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
6704e069438f1bd03dad174a4463bb6a_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ