DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
f0a7cde621747d4e1864c1cc39c4a803_JaffaCakes118
-
Size
229KB
-
MD5
f0a7cde621747d4e1864c1cc39c4a803
-
SHA1
5cc5a9cb1dd15baa580aa26fc9838ac685d7dafe
-
SHA256
9fb392dc99bc312354a3592ea203718209162e51f6d6b9d97c0b0d66616fc438
-
SHA512
d16ce7e9076fca7fee391e4f0afbdd4b120bd595e6e7d89251900a7ce785b49adf414a5e1e4d64f26f18bd0dff50f13d6d272e46e3f377ccbe968a7d522f7295
-
SSDEEP
6144:Vvblqdga5Tc+mkoIvRMV94kTtNCalLpMPpCW:VzoXtoWyzCeL4p1
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
f0a7cde621747d4e1864c1cc39c4a803_JaffaCakes118
Headers
Exports
Sections