DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JmpHookOf
JmpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
8411d24dd67c26b21c972d12c9f7f62d_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
8411d24dd67c26b21c972d12c9f7f62d_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
8411d24dd67c26b21c972d12c9f7f62d_JaffaCakes118
Size
34KB
MD5
8411d24dd67c26b21c972d12c9f7f62d
SHA1
974724b7e17ad22eb3247411811cfdcf8ce096e3
SHA256
9bfc8f56b34f8e5442f175862dcfee2122ae51940b62648c35305165ac866d59
SHA512
a05f19fa0a646f9f2ef897d04642920b0060b72879a7ecc3fa32431c385a1c1f49788bd4e4dbd7894a6994a6c8c89f3b035458a01fab3ef952078045763638f2
SSDEEP
768:VQoi6qZO1Qegd2D1aDo3Ix9h5GkO4dsQiJ3qNdR:VQv6qZ4Q3Ako3S9hmsgqN
Checks for missing Authenticode signature.
resource |
---|
8411d24dd67c26b21c972d12c9f7f62d_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JmpHookOf
JmpHookOn
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ