Outt
Sett
Behavioral task
behavioral1
Sample
bdd14645da7ac71e4fc2980f648ac6e0_JaffaCakes118.dll
Resource
win7-20240704-en
Target
bdd14645da7ac71e4fc2980f648ac6e0_JaffaCakes118
Size
62KB
MD5
bdd14645da7ac71e4fc2980f648ac6e0
SHA1
ea4f041850c9b5c3ab14dccc07398290ba59ef78
SHA256
4f9446212c736ae7f2ec58644cf0159d996f5a4056e20311e94965634fbb3f24
SHA512
53835f6e6ed42f14f4e6379414f2309e6ff4ce8c6f424f300baf7d99433ca11b50d51c19536b38ede8873f0f1eb5e350c8dc262befd317293724de2af548258a
SSDEEP
1536:V8O9Nn6RjriNugKdxPeTXeuwVjNMnr+sP1ooWbvYTEZ5iVwEZ:2Oz6VWNKxPeTXuwnRoFbeaUJZ
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
bdd14645da7ac71e4fc2980f648ac6e0_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Outt
Sett
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ