StartHook
hohoOff
hohoOn
Static task
static1
Behavioral task
behavioral1
Sample
bfc3d2e1b51cfcab0e9cf7d38a0180ac_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
bfc3d2e1b51cfcab0e9cf7d38a0180ac_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
bfc3d2e1b51cfcab0e9cf7d38a0180ac_JaffaCakes118
Size
53KB
MD5
bfc3d2e1b51cfcab0e9cf7d38a0180ac
SHA1
122a881d6c6a291c57ae2bee1bcef9e4d222931e
SHA256
cd253fc17575326829c9874aa7f6398dc6dded70a6d99d8fafafe50b44518860
SHA512
39a32c4e582d9bc485bfb484600b660607050999bd8197421de94eee6aedce0233fcb33c84ca693ae8d0ff2ee36b0daec4f0ca3a6f8675a92e2c286375a9c0c7
SSDEEP
768:k3nizqMQoBmlwzh7dI8LsJ0/69objr9WLGdiCox32UUAkeeAFW3wr/tq3uFgXnBS:k3izqMQK1gJ0BMLbRUAFFDLovK
Checks for missing Authenticode signature.
resource |
---|
bfc3d2e1b51cfcab0e9cf7d38a0180ac_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
StartHook
hohoOff
hohoOn
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ