DllRegisterServer
update
Static task
static1
Behavioral task
behavioral1
Sample
core/cmd.bat
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
core/cmd.bat
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
core/lava_.dll
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
core/lava_.dll
Resource
win10v2004-20241007-en
Target
JaffaCakes118_2878be41aaeedc0ee558e795eb571a68bfd955299a855e50c2a2da0c611a3f72
Size
344KB
MD5
68e5a1ff87ce7cdc850e55526899e76f
SHA1
1bb4fe13f9d07f6e91e60cb4458b90db1d0faa40
SHA256
2878be41aaeedc0ee558e795eb571a68bfd955299a855e50c2a2da0c611a3f72
SHA512
f3428b8c309c5eb5716b0842a0bce4aacf3079a945f6146eff53d5335079ba5e5d632802ef62b079d15418e7d9a6720f766fd667c0c004c95ea5697c0923a346
SSDEEP
6144:isBaiLlIurxTbp4o8l4It2DelgQpB/lP3u21uZoXa8ZTiposUDFkPtigi976D+VZ:bwIIuxTbp4oTOgQpdlG21I89ipNc4sRp
Checks for missing Authenticode signature.
resource |
---|
unpack001/core/lava_.dat |
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
DllRegisterServer
update
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ