DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
b9b3effe9b20852e50dcefb235a460bf_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
b9b3effe9b20852e50dcefb235a460bf_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
b9b3effe9b20852e50dcefb235a460bf_JaffaCakes118
Size
98KB
MD5
b9b3effe9b20852e50dcefb235a460bf
SHA1
ed56ea4b0b5646117402232ce0b7a5e2879d738b
SHA256
34ea0ddcbc1a19ee1783dd0c54d5fb87164727f1dcd82f93aef8d1a98264be27
SHA512
5ab19e9e4f0396234269ba1e36bfae56bbdacbf2b989c7502545393e324bc7613177f480e4e186f39b0314f0e00efacbcd6e1cd3066b4092c472ff8c202f5631
SSDEEP
1536:zIqdQkF5Ktyzs2q3YqCLbBoUhAx5grermji4C6sQaBRrnRNwLDLaXhVyHly:59F5j5qAXBoUhaqreUi3Ro2Xcly
Checks for missing Authenticode signature.
resource |
---|
b9b3effe9b20852e50dcefb235a460bf_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ