DllCanUnloadNow
DllGetClassObject
Kmkncpm
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
a866e31ba113707a25d60c303bd4c1a0_JaffaCakes118
-
Size
70KB
-
MD5
a866e31ba113707a25d60c303bd4c1a0
-
SHA1
b9b7bd73e7bb42587b4404ade3b9c6ae42f2fbe1
-
SHA256
13b7331714ebb2a721fb71074ff1f763a37a5549672a9c92464c6b119ce92cd8
-
SHA512
01e680ed96aa3222789c67e2f9d0d218749b1842ef17c494f6bd008be9997d575aa2b726c2f6e4f3d8ade08e059addcb649b0870005918fc8ae3b123114dbafc
-
SSDEEP
1536:vXLwtq0c49MKioFjSz1UFLE/dW5MMbKl89h9LMTlp/8zWqlLqw7t1FVSr77Gnou5:vXLwt/FiaU1Uq/dWFbNr8azD7VS372oO
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a866e31ba113707a25d60c303bd4c1a0_JaffaCakes118
Headers
Exports
Sections