Gviavu
HFjsnDOcRa
TmPcXjH
siHmdhZ
vJfGLPffRhY
Behavioral task
behavioral1
Sample
14305ff53c2b95ffac4a8e6bf114522b_JaffaCakes118.dll
Resource
win7-20240903-en
Target
14305ff53c2b95ffac4a8e6bf114522b_JaffaCakes118
Size
169KB
MD5
14305ff53c2b95ffac4a8e6bf114522b
SHA1
993ec0e5c688154cbaa544e6e315745c8d035544
SHA256
bcaaba548101c27df8d593d133cae145e819b8487ba28eed47cc5e2f97a97312
SHA512
a0655ecdf039564c6a91e72f0e137b5b1d78f8af3daf6d9e6b77b4570f8f96252f830acec8c8f1ff739f781628c2d2465da58a242fe64b3b4c0a604cf7dc541d
SSDEEP
3072:hGIMJ19KVZcM99nlj05LHioTJRg3z6StP/L+bwGPQdh9ro8FQAQ44pqDa3:hGIi1985CL3Raz+bwGl8iAQ44p
Detects file using ACProtect software.
resource | yara_rule |
---|---|
sample | acprotect |
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
14305ff53c2b95ffac4a8e6bf114522b_JaffaCakes118 |
unpack001/out.upx |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Gviavu
HFjsnDOcRa
TmPcXjH
siHmdhZ
vJfGLPffRhY
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ