Outt
Sett
Behavioral task
behavioral1
Sample
75f87e4b019b881735fab7fb87d24ad8_JaffaCakes118.dll
Resource
win7-20240708-en
Target
75f87e4b019b881735fab7fb87d24ad8_JaffaCakes118
Size
52KB
MD5
75f87e4b019b881735fab7fb87d24ad8
SHA1
1151e1fb3f9194f43a1d96c8f3696c8473ba5d1d
SHA256
087d00f085f9c1ec055eccfa4ecf48ba9fc804840bd18539eda31aa8da297246
SHA512
96cf3e60c5c8eb2b1b508989f9a00b2f6d32d781c5f34e3cd4052cd18883d9875a35271975461c06ef17e2673a421636319056ac005d2ed83ace115dd4d7465c
SSDEEP
1536:YJEu0nVKDea5rcvWkeKmhK72xGu642pPjoi0zmg4RN2e:YmJnVKbrcAKmhzxGuz244
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
75f87e4b019b881735fab7fb87d24ad8_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ