ServiceMain
ServicemixX
cervicemixX
svchostdkx
Behavioral task
behavioral1
Sample
8a3cc0f050cd79bf2eb85b66942219c4_JaffaCakes118.dll
Resource
win7-20240704-en
Target
8a3cc0f050cd79bf2eb85b66942219c4_JaffaCakes118
Size
102KB
MD5
8a3cc0f050cd79bf2eb85b66942219c4
SHA1
e321f7b3ffb91565a7dd21a7fee275b3f37c9681
SHA256
60b6c49e905e8fb28991de41f2e8f54d2bd61a5604a81db4a25b88e2022c06d2
SHA512
cd6cd4229dfba34830736bcaced9e711105710f0b58fa6997cc00db401549e6f796668ff8c527751929f0dd6dfb230eb0db748a503c536cf3c7c3c3c91f1cecc
SSDEEP
3072:DyvcWBDs/1tGF6IPtWheqkxxQw3KUxT95hNJOA:+vckDszzkWgJmw3KUxx3NJB
resource | yara_rule |
---|---|
sample | family_gh0strat |
Checks for missing Authenticode signature.
resource |
---|
8a3cc0f050cd79bf2eb85b66942219c4_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
ServiceMain
ServicemixX
cervicemixX
svchostdkx
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE