Static task
static1
Behavioral task
behavioral1
Sample
f355828c9dbb38fd010fd85b575d1b46_JaffaCakes118.dll
Resource
win7-20240319-en
windows7-x64
Behavioral task
behavioral2
Sample
f355828c9dbb38fd010fd85b575d1b46_JaffaCakes118.dll
Resource
win10v2004-20240412-en
windows10-2004-x64
Target
f355828c9dbb38fd010fd85b575d1b46_JaffaCakes118
Size
1.1MB
MD5
f355828c9dbb38fd010fd85b575d1b46
SHA1
c1d214eda2e2f1a2547587cb35262be1347f38b6
SHA256
c3548e9193b5d5a0b32ef90a93764c583420a14c6d115550dc0740c965d71710
SHA512
e33a1bd5b6e27f34e709236debb28b065afa35dfe3d15ab82f6ce068a258f579051b48158eb1b0fb60b133f708feaec00d7a5585813964dadfe319c118ef76ad
SSDEEP
24576:pgA9zzZYG210upbKVL9/6woq6ihGwyc8srCfNo:plYRPYnFoq6ihGwyMrCf+
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
C:\DistributedAutoLink\Temp\CompileOutputDir\defmon.pdb
NetApiBufferFree
NetShareEnum
InterlockedIncrement
InterlockedDecrement
SizeofResource
GetModuleFileNameW
LockResource
lstrcpyW
lstrlenW
lstrcatW
LoadLibraryW
GetProcAddress
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CreateEventW
CloseHandle
ResetEvent
ResumeThread
WaitForSingleObject
TerminateThread
SetEvent
CreateToolhelp32Snapshot
GetWindowsDirectoryW
OpenProcess
QueryDosDeviceW
GetCurrentProcess
GetVersionExW
GetModuleHandleW
GetTickCount
GetModuleHandleA
lstrcmpiW
Sleep
ExpandEnvironmentStringsW
LocalAlloc
LocalFree
ProcessIdToSessionId
WideCharToMultiByte
GetFullPathNameW
GetFullPathNameA
HeapReAlloc
CreateFileA
GetFileSize
CreateMutexW
HeapCompact
SetFilePointer
LoadResource
UnmapViewOfFile
SetEndOfFile
HeapAlloc
SystemTimeToFileTime
QueryPerformanceCounter
HeapFree
InterlockedCompareExchange
UnlockFile
LockFile
OutputDebugStringW
UnlockFileEx
GetProcessHeap
GetSystemTimeAsFileTime
FormatMessageA
WriteFile
FormatMessageW
HeapDestroy
GetFileAttributesA
HeapCreate
HeapValidate
GetFileAttributesW
ReadFile
CreateFileW
FlushFileBuffers
GetTempPathW
HeapSize
LockFileEx
GetDiskFreeSpaceW
LoadLibraryA
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
GetSystemInfo
GetFileAttributesExW
OutputDebugStringA
GetVersionExA
DeleteFileW
GetCurrentProcessId
GetTempPathA
GetSystemTime
AreFileApisANSI
DeleteFileA
GetDriveTypeW
TerminateProcess
FindResourceW
FindResourceExW
GetLastError
MultiByteToWideChar
lstrlenA
MapViewOfFile
GetEnvironmentVariableA
DeviceIoControl
RaiseException
InterlockedExchange
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
GetCurrentThreadId
CreateThread
GetCommandLineA
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetStringTypeW
VirtualFree
VirtualAlloc
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTokenInformation
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
LookupAccountSidW
PathRemoveFileSpecW
PathAppendW
PathMakePrettyW
PathFileExistsW
PathAddBackslashW
PathStripPathW
GrpMsgW
GetProcessImageFileNameW
WTSFreeMemory
WTSEnumerateSessionsW
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ