Outt
Sett
Behavioral task
behavioral1
Sample
b8059290339cab44a7c1f14bb9072627_JaffaCakes118.dll
Resource
win7-20240708-en
Target
b8059290339cab44a7c1f14bb9072627_JaffaCakes118
Size
64KB
MD5
b8059290339cab44a7c1f14bb9072627
SHA1
7000af52e7b507fabdc2517fd8b9952cd065ac8f
SHA256
54261abef728ea429004cf888346f5b9f736bb5fb38a08fa9eec791f8fbfb740
SHA512
edd3844e7d5b46cd1b65fe2b44e31c0bb052f52cf50a659ed8b5f57e95ff9e966baf1a202c42f139d013bd9ed6f76b860429d7862e81b9e3c8aafacb8dddde5a
SSDEEP
768:yuUr3ip/IHI7NQTva2jfFgThJG6eXc9QkS3HwB8z9U63aeC1fdQwV3/P0Si2WRas:yl3E0TJbCwzdQB+edQwR82EyY45+T8q
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
b8059290339cab44a7c1f14bb9072627_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ