DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
Static task
static1
Behavioral task
behavioral1
Sample
eb06ce897ea5d60bf33bf478101f6cfa_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
eb06ce897ea5d60bf33bf478101f6cfa_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
eb06ce897ea5d60bf33bf478101f6cfa_JaffaCakes118
Size
85KB
MD5
eb06ce897ea5d60bf33bf478101f6cfa
SHA1
2a103fe7405059e1bab4f2e9a972af2632116a5a
SHA256
991cecc10128ebd5333e0acf374d08260207f84301c6f51625dfc0c4e2334c18
SHA512
467714ddd9243d464633b4922d9d3dcf127c65bfedae5d5c16493d22f80d956e27dc24c36fcd4bf67cf2c927dc3e33a3aeb321977109d24f13fab6002eb4c0e4
SSDEEP
1536:211eQGsr1LbZHh3+GpLcYFt6qhGZ8Vi8otosz4rbaZo5lXoUn/Bn8xg5iWqUvw0B:n+aGpLcY+MxszUbt//B8xd9cW83xqg
Checks for missing Authenticode signature.
resource |
---|
eb06ce897ea5d60bf33bf478101f6cfa_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE