HookProc
InstallHook
UnHook
Static task
static1
Behavioral task
behavioral1
Sample
78ae7c8a196939f53a7223eab1f6b688_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
78ae7c8a196939f53a7223eab1f6b688_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
78ae7c8a196939f53a7223eab1f6b688_JaffaCakes118
Size
40KB
MD5
78ae7c8a196939f53a7223eab1f6b688
SHA1
9f770b5b6af0ed895966e2fc76548d7e8d99e22d
SHA256
cddbca18ec5987400960301102e269ff6eb06d371d5d599079accddb433b3200
SHA512
97b3f58276be80702abb781e8de82dffdffca26f37440c844ae9bb5b111a9c00a77e0c9b2c1926b1bc44a6127a79da84ba3e94579a27838a362122b95bed817b
SSDEEP
768:qNwXn55/Ph6dxOoY9lHuLhFikigTYYqOJLl9F5YAPpmzjSV3x2ha5H7:qW553MxOVnuL2kD5JLlr5YAPpmzXa7
Checks for missing Authenticode signature.
resource |
---|
78ae7c8a196939f53a7223eab1f6b688_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
HookProc
InstallHook
UnHook
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE