DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
b6cb7382a7966244f6a99a2fa42a1e24_JaffaCakes118
-
Size
130KB
-
MD5
b6cb7382a7966244f6a99a2fa42a1e24
-
SHA1
f9bff56f4e0a763781c7f59b0ec0886a7ca88b21
-
SHA256
be15f9ed5edd004558cfcc41a0bbc9940b29c6d9e187ef58fce244e1e2e5cc86
-
SHA512
0471f70227b30c1a67ebdfe12005343e666c7f9c27a83e6c18ae04402e39880cb9d3345d3dca99f5c54be1660d63ccd2712d83a63d98b471d3bb16b928159663
-
SSDEEP
3072:kprB/Koy4S7PXg1ajXyd7LJ+RUgQU1pLSFfhO9DpO1ooutdn:cr9fnSLYCkyUgQkuFf1moSd
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b6cb7382a7966244f6a99a2fa42a1e24_JaffaCakes118
Headers
Exports
Sections