DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
d31d67040cdb1832d3a05be747b5da76_JaffaCakes118
-
Size
233KB
-
MD5
d31d67040cdb1832d3a05be747b5da76
-
SHA1
ac45c2aa47a087fda2359ceb6337373397929b85
-
SHA256
2286cb42d6a9b76e10341b40620d748b20abf02148ad7f1826ef0eadae3118f5
-
SHA512
0d6d1f892b7d69331334b458b0aa76300b66a5aaebc35ced49761d3ae6b68b1b4c02337c8f849fed7a8f43187c6a60b396cbfd3b408f2752e62a2975f879f4f3
-
SSDEEP
3072:GLIS1FgLwi52pEOBEAuI8iBSRwVomNnDGIEdMpvuquhFdPamSR/MgrEri2b3FX:ab1FgLJ52p3scBLyYKpdi8hFMP/pA3R
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d31d67040cdb1832d3a05be747b5da76_JaffaCakes118
Headers
Exports
Sections