CancelDll
LoadDll
Behavioral task
behavioral1
Sample
409410e4191ae45bbc6e14b7b3033c01_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
409410e4191ae45bbc6e14b7b3033c01_JaffaCakes118.dll
Resource
win10v2004-20241007-en
Target
409410e4191ae45bbc6e14b7b3033c01_JaffaCakes118
Size
126KB
MD5
409410e4191ae45bbc6e14b7b3033c01
SHA1
60878319bcb5621c4adde0898d0bc2b459e7b2d9
SHA256
1c0942b8cddfceb3ace56fc824b663dd123f3e5ab1307da49bd847c2f080e289
SHA512
072677e0f22192f6200e1952b86e8f67aa62c22ad0f9fc18e575766a960fb962024f22f757ea52bea0e4a31e673622f8f09910d2645668987bafc316eaa152a2
SSDEEP
3072:oO+Bd8Vh26DsDwUElhVquiNpZgFM68+PAP:4Boh266wUkVrgpX68Yk
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
409410e4191ae45bbc6e14b7b3033c01_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CancelDll
LoadDll
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE