DllCanUnloadNow
DllGetClassObject
Khpknlk
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
93edabb43d63846eda3864b35d1d8702_JaffaCakes118
-
Size
70KB
-
MD5
93edabb43d63846eda3864b35d1d8702
-
SHA1
9e3d5ad448acc18eab24fce0e41a9c6ab32cdeb8
-
SHA256
bfbf8b5d5df3034c6e0b0ee5e9011d8e3fe7ae15fb4adccf93a3430bfd868409
-
SHA512
0749c6fdf71ace20745c01a9f57561324f6a34d03e2f44cfac540392a39029e7667e6d7ba8c6457eed3aa8f7011efd2e6ea2323e7c9487b8de6602e66583a2aa
-
SSDEEP
1536:zXLwtq0c49MKioFjSz1UFLE/dW5MMbKl89h9LMTlp/8zWqlLqw7t1FVSr77Gnout:zXLwt/FiaU1Uq/dWFbNr8azD7VS372oS
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
93edabb43d63846eda3864b35d1d8702_JaffaCakes118
Headers
Exports
Sections