DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Behavioral task
behavioral1
Sample
71350b377a77bd345386075d770c31dd_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
71350b377a77bd345386075d770c31dd_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
71350b377a77bd345386075d770c31dd_JaffaCakes118
Size
377KB
MD5
71350b377a77bd345386075d770c31dd
SHA1
391bc3d00cd816747095be0fd8317b47cc13f0e7
SHA256
7b70615f7edce8c01400322a8bfe66835d2a29dbdb9c778cbb984f864b698ba6
SHA512
46c673432ad41786971c00b85f08b17da059bd8f2d606a4a5f2e1754cd0bc1e7f09f2de2c129de61eb28012150b52d6d2b70954e44619ac1e9c31403609cdb00
SSDEEP
6144:m3PFlCh2+0tgwL8uhI966AGkAjOpoaY72xzpNKUlBJFLWol64ewlwz49ZE:m3PFlC4+wdq6xGJOpqalrDlrLYS9ZE
resource | yara_rule |
---|---|
sample | aspack_v212_v242 |
Checks for missing Authenticode signature.
resource |
---|
71350b377a77bd345386075d770c31dd_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE