DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
InitModule
RunMain
Stub
General
-
Target
df51aee89027399f01e13d81506c5c9f_JaffaCakes118
-
Size
32KB
-
MD5
df51aee89027399f01e13d81506c5c9f
-
SHA1
08cd1a109a7ed7dcf7025fb9925ca69a301b8637
-
SHA256
cc27353293cfe1ab780cd94e62b394107a58a9311dc4d59764b59b9a1be7802c
-
SHA512
c04d300852b741aa6d5f766099fa350979f5f0c3d93fafd65b12b2e9ceb355e12089f037cd75b484df648ebba1c08d03003df2b5b5d3fd32a8ea8ea74b39f58d
-
SSDEEP
768:dQO4N66rB65oPLo/FRGifb8rnf1FRSAs+DCp:Sz66F7KWnEjIC
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
df51aee89027399f01e13d81506c5c9f_JaffaCakes118
Headers
Exports
Sections
-
out.upx
Headers
Sections