DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
a45638d93bb21cda867817fcfb566f39_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
a45638d93bb21cda867817fcfb566f39_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
a45638d93bb21cda867817fcfb566f39_JaffaCakes118
Size
104KB
MD5
a45638d93bb21cda867817fcfb566f39
SHA1
b811d43142a29221c955aa09ab4e450bc2233356
SHA256
6f7401df9234ed314fe8ecba47dfc772bede1c8b541c27cda3462a0dc8693129
SHA512
676ed5bcd96e29d9a14fce38a45956b6757e2418b07c61a7b11ad1add54d83e2330b77db7c9e412f6593b89a6a8c103ab26d688ae2b0885ea430586551996fd7
SSDEEP
384:DuWkyBoUcUM+phpbcbJTl8+79/Ku/kyVLtExFFl20sg:DZk4XX2hZkuMyVLtMFFgy
Checks for missing Authenticode signature.
resource |
---|
a45638d93bb21cda867817fcfb566f39_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
EnterCriticalSection
InterlockedDecrement
HeapAlloc
GetSystemInfo
GetVersionExA
InterlockedIncrement
lstrlenW
DebugBreak
HeapFree
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CreateThread
OutputDebugStringA
Sleep
WinExec
CreateFileA
WriteFile
CloseHandle
GetWindowsDirectoryA
FindFirstFileA
HeapCreate
DisableThreadLibraryCalls
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
LoadRegTypeLi
SysFreeString
SysStringLen
ord32
ord21
ord58
ord30
ord15
ord18
ord16
ord23
ord57
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ