DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
dfd1f7225f26d45c7c670e46ba583d78_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
dfd1f7225f26d45c7c670e46ba583d78_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
dfd1f7225f26d45c7c670e46ba583d78_JaffaCakes118
Size
87KB
MD5
dfd1f7225f26d45c7c670e46ba583d78
SHA1
64eb1c8c7f255dd2c53189f163ec18672cbc0a19
SHA256
1bcfe998a66536a40db0939cee39de1cd692f5f56f5eeaa7402f32c8a28992fb
SHA512
a538543fae80036e183ec8a3aee71ae157fb0193b1f72b42b94acfbc38697fa51ea5186f26c2e5c48c23f903fc2f09d6bab1f1b0b664ad4925dd938d2b6e7c61
SSDEEP
1536:7v7p+/lEddHWgJZIu4IrLg4bdhlldT2KiBpkG1sggx2q0c+VoRz:7TpalUW4ZnrRbDlr2KiBpV1pN3c/Rz
Checks for missing Authenticode signature.
resource |
---|
dfd1f7225f26d45c7c670e46ba583d78_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE