ChangeMe
DllRegisterServer
RegisLongers
Behavioral task
behavioral1
Sample
4058a63874e42bd8ec3e6b2a3401cdde_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
4058a63874e42bd8ec3e6b2a3401cdde_JaffaCakes118.dll
Resource
win10v2004-20241007-en
Target
4058a63874e42bd8ec3e6b2a3401cdde_JaffaCakes118
Size
664KB
MD5
4058a63874e42bd8ec3e6b2a3401cdde
SHA1
548aa6cf09ae915524fc2d081aab00362049bd3c
SHA256
63358369a404b2abf22a050b99141d8e04f68995e23b03718db98504af74566b
SHA512
680f1c5cbf2d5c8d07058d11b3f5466de41466c5017cf7284144ee5e006133dfe35c5d2e77503359821eeed06222750600c5496840713fd18865b75421d1211d
SSDEEP
12288:2si5g4y9f2QPRmxiDozjLst4kY/P5+YuaVaYlIALrDbzeZ5ea4HMY:2mxFT4jP5+titlJrDWx49
resource | yara_rule |
---|---|
sample | aspack_v212_v242 |
Checks for missing Authenticode signature.
resource |
---|
4058a63874e42bd8ec3e6b2a3401cdde_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
ChangeMe
DllRegisterServer
RegisLongers
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE