CancelDll
LoadDll
Static task
static1
Behavioral task
behavioral1
Sample
063eb6c6f77eaff0b06a10e3c90cc133_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
063eb6c6f77eaff0b06a10e3c90cc133_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
063eb6c6f77eaff0b06a10e3c90cc133_JaffaCakes118
Size
67KB
MD5
063eb6c6f77eaff0b06a10e3c90cc133
SHA1
98bd292b012db8ec5aee562d6a7ba63744f062b0
SHA256
caa3c0224efa3f2abc77843feeafa0180eeca5cc0cba4e3fcfaed16afa2fd757
SHA512
179fb9144732df426852cab3e5195a5ccecfb3db36c55ffb85b8569c7ebda8125b7308c21207cb2b06437c61cddb8c8e521195a5ef453c9aef151fdf4b165854
SSDEEP
1536:BfQAl+7ovOScXkvoUkdxWLHgUAGaYgCflclgX32xZ0Ji1dKAU:dQAl+p9A/LHqGZclgXGxZS4QZ
Checks for missing Authenticode signature.
resource |
---|
063eb6c6f77eaff0b06a10e3c90cc133_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
time
UnhookWindowsHookEx
RegQueryValueExA
CancelDll
LoadDll
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE