DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Behavioral task
behavioral1
Sample
867bcd66693adbe5733fdea411bdd6dd_JaffaCakes118.dll
Resource
win7-20240708-en
Target
867bcd66693adbe5733fdea411bdd6dd_JaffaCakes118
Size
6KB
MD5
867bcd66693adbe5733fdea411bdd6dd
SHA1
fd0cd2f95957933e52e7e15de6d71707059e2e8d
SHA256
59b887fe66be111fed89b0b94c5c29578928b1fb46558b92d3653bc86e5f0dc6
SHA512
9b46a7ebb1aa6b1a667df86dc042bc7f23ec66984505fe9c44d7578b03bb7aae46b84b9691a91d0577a0d032675357bff38844be701b67b4e10c2446ca7b466a
SSDEEP
96:wMU9BHoqmRRc5JO1VlBBab0Gr2SsDaTLCtLdA:nUjIbM5JObBarAa2xA
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
867bcd66693adbe5733fdea411bdd6dd_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE