CancelDll
LoadDll
Behavioral task
behavioral1
Sample
b62fe46dced1df36dfc25e0bfaa67424_JaffaCakes118.dll
Resource
win7-20240708-en
Target
b62fe46dced1df36dfc25e0bfaa67424_JaffaCakes118
Size
86KB
MD5
b62fe46dced1df36dfc25e0bfaa67424
SHA1
b8b8d83bf9a316c9a3c62284ab75ec46edef6ac7
SHA256
abd5e1c5499201cd624db9320579f27c0f1e0a75e45f830689686b19fa377e43
SHA512
6a63bb0ac1968fe3cdfe841a8bc860fd26dfe63de8ce9d700e37da6ecbc130a698a772b6db605c541ff21ea3dd589a2f88cf26630b38d249a0d996a711d2b298
SSDEEP
1536:LmSQNbJE1vj8gDxkOB0SM6pOztIDq2X2MRh00N7aWL:LmFty1L8gDyOU6pORIu2XPRhJN7ak
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
b62fe46dced1df36dfc25e0bfaa67424_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE