DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JmpHookOff
JmpHookOn
Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fdf58d22fa99a27e4481b667397b4d9a_JaffaCakes118
-
Size
152KB
-
MD5
fdf58d22fa99a27e4481b667397b4d9a
-
SHA1
c9c13786b530674d937816a799dd67012a022aed
-
SHA256
fc22ea453f51d89bb495f8b183ba30df1fa6613c15cc3b8feec1ad9b8fb16652
-
SHA512
1bf4f6f696e34c7b97f8c010cd4a0f3739d11457c2d3ab8561e78dfdc7f4f35b8402c33ce5b5b78ce5a48ed5df1fab0fbdb8616c82cef13482d48d2710ea86ce
-
SSDEEP
1536:gxMqHlxQezbGss/fh3h6iHCj/v1Nkkf3RBgSprCbOXK4F:U/NzbGss3X6p1NTf3RBgsWbJi
Score
10/10
Malware Config
Signatures
-
ModiLoader Second Stage 1 IoCs
-
Modiloader family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
fdf58d22fa99a27e4481b667397b4d9a_JaffaCakes118
Headers
Exports
Sections