DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
c156b74596d3793265775f0dfe62c378_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c156b74596d3793265775f0dfe62c378_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
c156b74596d3793265775f0dfe62c378_JaffaCakes118
Size
87KB
MD5
c156b74596d3793265775f0dfe62c378
SHA1
4db2f898743a1ca9a19b0cdc09c3d6725fb62790
SHA256
87da30a27f9b88f6d523f510d2ce6cd575f053a8d030ef6a5b2324f3789ed941
SHA512
b80cdaec94dd8ef19e3f585f6735c6f3c5b738fbf405442e116f8b8785641754b940b2807eb4bcddd46564c58e993a1c0d948a8a6c4496782aa70b8deb08c1d3
SSDEEP
1536:qd/hrWSWEGTmIkWgffGUvOqNNXacjMHCwwoHKbSXzs2SdWmqOIo:qd5rWSpEUXtvLBoHKGX7o
Checks for missing Authenticode signature.
resource |
---|
c156b74596d3793265775f0dfe62c378_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE