DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
dd04a139630a774db3ebcef9dec88ac1_JaffaCakes118.dll
Resource
win7-20240708-en
Target
dd04a139630a774db3ebcef9dec88ac1_JaffaCakes118
Size
562KB
MD5
dd04a139630a774db3ebcef9dec88ac1
SHA1
7971c6be29ec94018b156fcf8a4748676165f8c1
SHA256
5a8e62b693061ffec25ce1a9fcec4c8800f0df77aa91af2f9b73a9376a5a606d
SHA512
81c6c16038d923464d660f8629cf40d0ac7bdfa54cd6d3ff1b1007272182c61074372410e747ade1039ef80eb251412b1a82e834f2be06b9213efc0932111b3b
SSDEEP
12288:+0Et9YDc/Tk4Po4wSSqodPF9C2vTgYn3uJeM1Rn:utWDcw4o4Ts/9Ckn6eMR
Checks for missing Authenticode signature.
resource |
---|
dd04a139630a774db3ebcef9dec88ac1_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ