DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
8eee4b603c53ac0415b2bedc9052e1b0_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
8eee4b603c53ac0415b2bedc9052e1b0_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
8eee4b603c53ac0415b2bedc9052e1b0_JaffaCakes118
Size
167KB
MD5
8eee4b603c53ac0415b2bedc9052e1b0
SHA1
3a8142203e6b53b5a5f013333559340dbfa8d502
SHA256
889eb902713c53ab2f5c904af9ccd15e1f157f62ff0a9667af71e755ca4ed9ad
SHA512
ef3f64f5c40cbd2dfefc712035fdf86d653c03365d17e17b9628f4a54bac69406785add1fb4c70465362c2a6b6691965cf14269065b744285b196b99df1f4d77
SSDEEP
1536:2qsljI6hrVfPDZTA/MeVcMIuAw7F3mk7UEb1SUJ2jHx9RVBv0oTA/:Nyr3deMhMgYYC/2jRTTvJe
Checks for missing Authenticode signature.
resource |
---|
8eee4b603c53ac0415b2bedc9052e1b0_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE