DllCanUnloadNow
DllGetClassObject
Jgjkeob
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain
General
-
Target
a8070b3d5a43ee2414e02aa6c97aeb20_JaffaCakes118
-
Size
70KB
-
MD5
a8070b3d5a43ee2414e02aa6c97aeb20
-
SHA1
75d149ca1e2619dbf64192fd0aebe90bcceb3351
-
SHA256
b487ea05bcdc6cb4f1c0babfb7f2b69e087796e6aa64a6c36b19648978c753a5
-
SHA512
f0605cb4c85622b81d3581a8f90d3f057188530d2d832d4eb0b8194c90188f698e02de82e49bf6a5d15f9f98dd15c138875ff6bbd5f04dd32809dc47d83f8be0
-
SSDEEP
1536:2XLwtq0c49MKioFjSz1UFLE/dW5MMbKl89h9LMTlp/8zWqlLqw7t1FVSr77Gnoum:2XLwt/FiaU1Uq/dWFbNr8azD7VS372oV
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a8070b3d5a43ee2414e02aa6c97aeb20_JaffaCakes118
Headers
Exports
Sections