DelSer
ServiceMain
Setup
Behavioral task
behavioral1
Sample
a4d114a02cd4f288790c687d28a712b5_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a4d114a02cd4f288790c687d28a712b5_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
a4d114a02cd4f288790c687d28a712b5_JaffaCakes118
Size
404KB
MD5
a4d114a02cd4f288790c687d28a712b5
SHA1
f7e874f10546cc979b5f7998ef139801b78e48ae
SHA256
2126af0986b2e9042390923f184f99fd73ef74d14874ca2fa511204728b4f2b1
SHA512
2c3326ebe793f0a13c62b61b04d882149ab6a2fcd69c6c56d6f368de06c6cd9962855741c8c3e22b0ca5de7c9b732bbd53c535f2d9cabb61d730065fb203e211
SSDEEP
6144:dLxbM0XZHc/iHO05cbvF2idZecnl20lHRxp3gOncduD7yB9VCO6Sco4q8+dE6Cqp:5xbT8Ku050F3Z4mxxJDqVTVOCp
resource | yara_rule |
---|---|
sample | aspack_v212_v242 |
Checks for missing Authenticode signature.
resource |
---|
a4d114a02cd4f288790c687d28a712b5_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DelSer
ServiceMain
Setup
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE