DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
ab81be6c4bf67c4cfd210531cebb59b5_JaffaCakes118
-
Size
224KB
-
MD5
ab81be6c4bf67c4cfd210531cebb59b5
-
SHA1
a6e0b96bb296636ca5c6e199a631bd1c3130193d
-
SHA256
c145a0bb39588476c81898642361af64228e1819b000b64dbbc9681dc506f69b
-
SHA512
81c6f3a71ec72fa7e1c28ebbceab0e820033e25b984bd410e29f470b26f60af4722e6b37ceeceb12e13e532ce36f51fbb136093083874d4f0b64178bd4f696cc
-
SSDEEP
6144:1wx/C2G6SDG6dphYB365sryrXlsnEJrWe1WA:1wHG6SD/ac5sruXeEJC
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
ab81be6c4bf67c4cfd210531cebb59b5_JaffaCakes118
Headers
Exports
Sections