DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
b13887fcaa91840bbae46be1a8fa875e_JaffaCakes118.dll
Resource
win7-20240708-en
Target
b13887fcaa91840bbae46be1a8fa875e_JaffaCakes118
Size
503KB
MD5
b13887fcaa91840bbae46be1a8fa875e
SHA1
914307c95a18f0d17b4fbd836e77745617d01cc1
SHA256
b9087594aa40a546eacb170195aeaa138bbe49987d521d876df40fa24b49c570
SHA512
d77954131d33b25ee6ff72b951cd8f7a2914a0afc41bfe7b9b5dbb27f74910641e15a18f44b6b2542d32c2835013e3203bdc34e83e00e20e527d000842ce5cdc
SSDEEP
12288:RGdHAHCa7nnYMgLdUM9qmX0gXGU9wHsXbAL5lczZB:RGdHAH9n9a+M9qmX0gXG8wsX8vczn
Checks for missing Authenticode signature.
resource |
---|
b13887fcaa91840bbae46be1a8fa875e_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE