API����
����_HTTP��Դ��
���ش���
ȡIP��ַ_
���ٴ���
Static task
static1
Behavioral task
behavioral1
Sample
3a61206c30dbc708bedadaabd709966b_JaffaCakes118.dll
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
3a61206c30dbc708bedadaabd709966b_JaffaCakes118.dll
Resource
win10v2004-20241007-en
Target
3a61206c30dbc708bedadaabd709966b_JaffaCakes118
Size
108KB
MD5
3a61206c30dbc708bedadaabd709966b
SHA1
b74193c3b76db56646b1319008983bd4e0be21db
SHA256
72e8182b0c5199a16b3b69878ed4487566e9e35566e452478663551db8fc452b
SHA512
1b1cc567aa99a32aff9af81cbe37c7fb4d7e1eb4a57bef34f1d46bbe584841568c32d0663b846a7cc0c5d26329aa4efdcc1f594aca9b4ee9453d2b0f4d557b4d
SSDEEP
1536:/4CUMX56dJWytPovFMJ6G3ocADzBX7oXtvBhYDBD2UVB94bgxzYsOTULbJROi0P4:LUMX46yivlhEIAiq5Tu
Checks for missing Authenticode signature.
resource |
---|
3a61206c30dbc708bedadaabd709966b_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
MessageBoxA
FreeLibrary
lstrcatA
GetModuleFileNameA
ExitProcess
LoadLibraryA
GetProcAddress
lstrlenA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
API����
����_HTTP��Դ��
���ش���
ȡIP��ַ_
���ٴ���
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ