WlxShutdownEvent
WlxStartupEvent
Static task
static1
Behavioral task
behavioral1
Sample
3796ec5f0093d37ac7c0251f2f1f583d_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
3796ec5f0093d37ac7c0251f2f1f583d_JaffaCakes118.dll
Resource
win10v2004-20241007-en
Target
3796ec5f0093d37ac7c0251f2f1f583d_JaffaCakes118
Size
112KB
MD5
3796ec5f0093d37ac7c0251f2f1f583d
SHA1
e4df88e548c1d908ade9607c92665c462859c6da
SHA256
e4a4003711fc06b266840f8eef552546433a7108de237df227729a302445fd38
SHA512
32d86c2d4f406d8877f50f632ebe4cee8fe56fd90aa81a21232745d44e53e670a9fee68d5aff757ff6b3be9ffbd2daec0cbc58643673596f99fab09289ecb513
SSDEEP
3072:u70XmuisgMlKdDFvjFtdA4N4wkZvrbzF58k5rE:u70osPlMvjNADjD78k5I
Checks for missing Authenticode signature.
resource |
---|
3796ec5f0093d37ac7c0251f2f1f583d_JaffaCakes118 |
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
WlxShutdownEvent
WlxStartupEvent
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ