DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
b4fac9c02c39de8870461ef25445bcb7_JaffaCakes118
-
Size
307KB
-
MD5
b4fac9c02c39de8870461ef25445bcb7
-
SHA1
d65f50317bec69865fc75b525fb0ebdf18d02120
-
SHA256
cd35f1b3b80bfc9863645b1c0829855dc358eca45ade14294b01b6c4b176bb9b
-
SHA512
be004984b5300d8e450c6b4a46219ca44ae7521da36082120e2da36e7e56fc2eab863d4acb7a97246e14d2be9c3215b7a9a29b9aa8895ef34791996716838cd1
-
SSDEEP
3072:4B1iYDyu8ctFRPVwBghoBwSRWGeHKEbH9QP89Qa62hyvwVsBV8kp5KLxZHRBrN6:4B1LrD+KoOZGIBm8GmyoOHp5KxD6
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b4fac9c02c39de8870461ef25445bcb7_JaffaCakes118
Headers
Exports
Sections