CancelDll
LoadDll
Static task
static1
Behavioral task
behavioral1
Sample
062175487c8db8f5efc7b8b542dbc415_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
062175487c8db8f5efc7b8b542dbc415_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
062175487c8db8f5efc7b8b542dbc415_JaffaCakes118
Size
67KB
MD5
062175487c8db8f5efc7b8b542dbc415
SHA1
307a70ee4623a89aa4790447f55e065d363a9ed6
SHA256
bb4582f09aac0074c74011e02818d72445af89a96d258b81aa1f59e7518f759b
SHA512
a2b55452d36d788564c21b6d565ac860013b60a4eff4501f0d6d4c788647d5d16607ff3576fb34fcfa1d9c2dd00d1891d5ba73c90f95c90559e662d50ecf80a7
SSDEEP
1536:BfQAl+7ovOdhFAKOd2vCFsrL0G0ypEa1MaTuz90s8HBIhps:dQAl+pdTAKOd2ayrgG5pt7TzsGus
Checks for missing Authenticode signature.
resource |
---|
062175487c8db8f5efc7b8b542dbc415_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
time
UnhookWindowsHookEx
RegQueryValueExA
CancelDll
LoadDll
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE