DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
b56d676bbbfaf403ebfabd8f9cf2987c_JaffaCakes118
-
Size
114KB
-
MD5
b56d676bbbfaf403ebfabd8f9cf2987c
-
SHA1
de82b8c30c430b9a897ad5f875f7770b40033792
-
SHA256
62730fcb7f518c554cd9d229f99881e51babd6017158ea17152070678adafeca
-
SHA512
f8380770d0a17fff5b751f4e6c315e0abeaf46b32184cf0b07b5aca20655f566e9aab0781d528f2243b985a10642a23259aa16e167802d10800b99fd1b2a4a93
-
SSDEEP
3072:OgujePVp428vz2UOlBfLuo+hqp+iZ0gtpotx:ue9OjvOlBYhDMXo
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b56d676bbbfaf403ebfabd8f9cf2987c_JaffaCakes118
Headers
Exports
Sections