DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
bdd36d8b26112b5500e81a5bbaadb649_JaffaCakes118.dll
Resource
win7-20240729-en
Target
bdd36d8b26112b5500e81a5bbaadb649_JaffaCakes118
Size
574KB
MD5
bdd36d8b26112b5500e81a5bbaadb649
SHA1
1b9fa43fe3d9c79beca0f00ac55b954f1820d288
SHA256
3ad060d9fc332a24882300fa3587d25f20b35eed78690f96de49cbd7e360bf4f
SHA512
4bf8279edae23dfe6718da2270d650f9f09764e021f7e62db1235de85687cc1c292ebf5d354980fb36e17efe137ba601895e761c4fcd3121e0c2bbbd2262de0e
SSDEEP
12288:QiSIF+1lgqnuU8dy2rfCDwFT2YHgBrO1OySJY8:j81YtddbQwLgxcoJY
Checks for missing Authenticode signature.
resource |
---|
bdd36d8b26112b5500e81a5bbaadb649_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ