CancelDll
LoadDll
Behavioral task
behavioral1
Sample
751307311711e58000a53eb155e52a1f_JaffaCakes118.dll
Resource
win7-20240708-en
Target
751307311711e58000a53eb155e52a1f_JaffaCakes118
Size
108KB
MD5
751307311711e58000a53eb155e52a1f
SHA1
ab394fb2c4df8d2bceb473918e2e43f4223c69e4
SHA256
7d8992539d21ea381a1b3194516cb699ee31eb10d67eff46d999b65f338c66e3
SHA512
750642190b00cc6877906cbed3f339b5f842e2c4ae8de1168c060130151aecd2c324b932f14db41f277cd3a353516857a592211fed4ccb4fd4b6e9a61ddca960
SSDEEP
1536:TD6K271gp7DXHQ49Aj/QdURYKr2z26dYizLx1uy4ieaS1GuMoCabi:TDGYLwwi/bRfrORdY+WZieaS1GiJm
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
751307311711e58000a53eb155e52a1f_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE