Export1
Export2
Static task
static1
Behavioral task
behavioral1
Sample
efad8ab5642cc834d8c7ba0ac850f1c0_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
efad8ab5642cc834d8c7ba0ac850f1c0_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
efad8ab5642cc834d8c7ba0ac850f1c0_JaffaCakes118
Size
22KB
MD5
efad8ab5642cc834d8c7ba0ac850f1c0
SHA1
89e883e3f23adca6c9fc1b5939dc0de55aee05f0
SHA256
8dd5ec9c60c4b5df7ae265f86151001cf795c9b10d9d442c7e2ea16551bfdb4b
SHA512
282ac1a069ea324e8c3f26b220fc76e9ac0a2c418419bf979a80003959ccc6f2e59005798b7fbff7f5e78a22121ec1cbb678348b87a05f5ddfd7e4d4ab06e4b9
SSDEEP
384:vGdWzyj1Hj75GMEqwD0mWoddhq1xoMfNDsCaacY8aC2jDgHWkCTQiTOlf95VfsJ:edcClPMMtwD0mWUh8D9hcY8a3IHW3Tgi
Checks for missing Authenticode signature.
resource |
---|
efad8ab5642cc834d8c7ba0ac850f1c0_JaffaCakes118 |
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetProcAddress
LoadLibraryA
GetLastError
Sleep
GetTickCount
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
GetModuleHandleA
lstrcatA
CreateThread
DisableThreadLibraryCalls
Export1
Export2
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ