DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
General
-
Target
129a3085485d2cf73fa47ce403ffda09_JaffaCakes118
-
Size
228KB
-
MD5
129a3085485d2cf73fa47ce403ffda09
-
SHA1
dec0c20ad240701e7469ae22299d4d8cd184ecec
-
SHA256
7e3ae54d8edee2dfbbaed025c7718e4b6a60cbfe9b3031e50b56e57b0019ee16
-
SHA512
07172e1869be00c1d81d3985d113d99a8dfd39b1008d9ffbf36c29e353e5c2dc02f8e2b7c40a7ffbd3117ecb63cfb64a09eee1ebbf648c0997387ebf9379f966
-
SSDEEP
6144:zBG0qLgLy99votEg1GGhsbol+4ymMsNzrRvaSq:zBG0qsLynOEggGhPlNymvVBq
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
129a3085485d2cf73fa47ce403ffda09_JaffaCakes118
Headers
Exports
Sections