CancelDll
LoadDll
Behavioral task
behavioral1
Sample
2a1ddfed676886c3643de26acc716397_JaffaCakes118.dll
Resource
win7-20240903-en
Target
2a1ddfed676886c3643de26acc716397_JaffaCakes118
Size
97KB
MD5
2a1ddfed676886c3643de26acc716397
SHA1
19522446941c782caf6fc32fea9b190ca1136caf
SHA256
e74306f94b6d54d323ad6bdfe90c1556b07ddc463782d4e122e19d0c190755d4
SHA512
c488d6fa70910815fcc28172cf558dac3b07b5bb925620e85550bdd9ccdaafb9873524157a5f04783060d1fc6949953b4655b6d4111d33be5194f6f1d3aeb44f
SSDEEP
1536:qWNTI2j7IGPmy5guIRp29Xir0jjYAwHbylkL5TZBGwC/sO:qWNTHTey5HC89yr09G2kLtZzCEO
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
2a1ddfed676886c3643de26acc716397_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE