CancelDll
LoadDll
Behavioral task
behavioral1
Sample
c8879c7e85343a130382d28b998a302b_JaffaCakes118.dll
Resource
win7-20240708-en
Target
c8879c7e85343a130382d28b998a302b_JaffaCakes118
Size
88KB
MD5
c8879c7e85343a130382d28b998a302b
SHA1
c068757fe031329a23f6a4264cba0850395295cb
SHA256
151cf5e21aa7e71b019fd8e4138179a451337ea40402467ea1b2fb07d88b185f
SHA512
26c97bd8e4cdad174575a52e7172b8cf74fbe9cc6d7d3ef638fa0dc7fb39837eee77e118c308e2da995511f9c00a8dee88a0bbe91bf0ef493a119b25351a4a54
SSDEEP
1536:TD6K271gp7DXHQ49AxsKmEhRx6YBM1CYFFxNY:TDGYLwwTgw8YLxNY
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
c8879c7e85343a130382d28b998a302b_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE