DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
tHAcj
Static task
static1
Behavioral task
behavioral1
Sample
ffe9d3e18a65fd83ce3e30c09ba8fc99_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ffe9d3e18a65fd83ce3e30c09ba8fc99_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
ffe9d3e18a65fd83ce3e30c09ba8fc99_JaffaCakes118
Size
44KB
MD5
ffe9d3e18a65fd83ce3e30c09ba8fc99
SHA1
15a74ada741a0653215472ca5eaff16e441be6a5
SHA256
9701833efe513c53144e2a54392bc30d183d6826d4741af96e661dbd57fbe958
SHA512
534ea687b6cde866dc9953ce895288e0fc8e62cac6f8a362730c0b434937e80eb57659c2b4408797cd2291cc9da4a7ebf61f5ff2c0411ac59894a9dfa15acd36
SSDEEP
768:mjbjZw/nAw96QhCrQU8kpkavURjp4XzsgLa1mGm:mjxwv/CrQUINRCztLaU
Checks for missing Authenticode signature.
resource |
---|
ffe9d3e18a65fd83ce3e30c09ba8fc99_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetLastError
CreateMutexA
CreateThread
VirtualAlloc
GetProcAddress
CloseHandle
GetLocalTime
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
WinExec
InterlockedIncrement
LoadLibraryA
UnhookWindowsHookEx
SetWindowsHookExA
SetTimer
FindWindowExA
PostMessageA
DefWindowProcA
GetMessageA
TranslateMessage
DispatchMessageA
RegisterClassExA
CreateWindowExA
ShowWindow
CallNextHookEx
KillTimer
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
free
__CxxFrameHandler
_except_handler3
??2@YAPAXI@Z
??3@YAXPAX@Z
_stricmp
strchr
sprintf
fopen
_initterm
malloc
_adjust_fdiv
strrchr
fclose
fwrite
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
tHAcj
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ