Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
16e28a3d1acd75a0c572ecca2d700091_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
16e28a3d1acd75a0c572ecca2d700091_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Target
16e28a3d1acd75a0c572ecca2d700091_JaffaCakes118
Size
4.4MB
MD5
16e28a3d1acd75a0c572ecca2d700091
SHA1
813a8a568bc0f70f0445984d9477d5dcdb691ac9
SHA256
104075a9d32f48cf8f38bf1d4f167677956353025742cf44ea1333277510a08b
SHA512
fc241a6f6d6c33a81ec655b3b5b6fe3d22e92e69dfa163438a522a6cd35415e1d37ba50a0c0537f8a93dedae56f7515cff3cfab96e1da8f6861303bd085397d8
SSDEEP
98304:wzz+XKNcftkb40z9LaIjA9yHtynfDFe2uNgto5ibfdPWjm:w+S4jEyfDSYR2m
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
X:\GIT\esginstaller\_Builds\Release\Win32-silent\Installer-silent.pdb
GdipGetImageWidth
GdipSetClipRegion
GdipGetClip
GdipDeleteGraphics
GdipDeleteBrush
GdipFree
GdipDeletePen
GdipResetPath
GdipCloneBrush
GdipSetImageAttributesColorMatrix
GdipDrawImagePointRectI
GdipDrawImageRectRectI
GdipCreateTextureIAI
GdipDrawPath
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetImageAttributesWrapMode
GdipClosePathFigure
GdipAddPathArcI
GdipDisposeImageAttributes
GdipAlloc
GdipSetImageAttributesColorKeys
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipCreateImageAttributes
GdipGetImageHeight
GdipFillRectangleI
GdipCloneImage
GdipSetPenDashStyle
GdipSetPixelOffsetMode
GdipCreatePen1
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromStream
GdipCreateBitmapFromResource
GdipImageRotateFlip
GdiplusShutdown
GdiplusStartup
GdipSetSmoothingMode
GdipDeletePath
GdipDeleteRegion
GdipCreateRegion
GdipCreateFromHDC
GdipCreatePath
GdipCombineRegionPath
GdipSetInfinite
FindFirstVolumeW
GlobalLock
GlobalAlloc
GlobalUnlock
GlobalFree
LockResource
SetFilePointer
SetVolumeMountPointW
DeleteVolumeMountPointW
DefineDosDeviceW
MoveFileW
GetVolumeNameForVolumeMountPointW
GetLogicalDrives
FindNextFileW
GetFileSize
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
InterlockedCompareExchange
InterlockedExchange
UnhandledExceptionFilter
IsDebuggerPresent
WriteConsoleW
GetStartupInfoW
GetSystemTimeAsFileTime
ExitThread
CreateThread
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileInformationByHandle
GetDriveTypeA
FindFirstFileA
GetFileAttributesA
CreateFileA
ExitProcess
SetConsoleCtrlHandler
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
GetTimeZoneInformation
RtlUnwind
DeleteCriticalSection
CreateToolhelp32Snapshot
MoveFileA
DeleteFileA
GetTimeFormatA
GetDateFormatA
GetCPInfo
LCMapStringW
LCMapStringA
GetStringTypeW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapSize
GetACP
GetOEMCP
IsValidCodePage
HeapCreate
VirtualFree
VirtualAlloc
GetConsoleCP
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
FlushFileBuffers
SetStdHandle
GetFullPathNameA
GetCurrentDirectoryA
SetEndOfFile
InitializeCriticalSectionAndSpinCount
CompareStringA
CompareStringW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
SetEnvironmentVariableA
SetEnvironmentVariableW
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
FreeEnvironmentStringsA
GetEnvironmentStrings
IsProcessorFeaturePresent
EnterCriticalSection
Process32NextW
QueryDosDeviceW
Process32FirstW
GetVolumePathNamesForVolumeNameW
FindNextVolumeW
FindVolumeClose
GetVolumeInformationW
lstrcpyW
lstrcatW
CreatePipe
GetSystemInfo
LocalAlloc
GetCurrentThread
GetComputerNameW
SetHandleInformation
GetLogicalDriveStringsW
GetProcAddress
CreateProcessW
HeapReAlloc
MulDiv
ExpandEnvironmentStringsW
DeviceIoControl
FindClose
GetLongPathNameW
CreateDirectoryW
FindFirstFileW
LocalFree
GetSystemTime
GetModuleFileNameA
FlushConsoleInputBuffer
WideCharToMultiByte
GetVersionExA
LoadLibraryA
GlobalMemoryStatus
QueryPerformanceCounter
GetVersion
GetModuleHandleA
ExpandEnvironmentStringsA
GetStdHandle
GetFileType
WaitForMultipleObjects
PeekNamedPipe
FormatMessageA
SleepEx
TerminateProcess
OpenMutexW
OpenProcess
GetVersionExW
DuplicateHandle
GetCurrentThreadId
RaiseException
FlushInstructionCache
lstrlenW
MultiByteToWideChar
GetModuleFileNameW
LeaveCriticalSection
SizeofResource
LoadLibraryW
InitializeCriticalSection
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
LoadLibraryExW
SetUnhandledExceptionFilter
LoadResource
FreeLibrary
GetUserDefaultLCID
EnumResourceNamesW
GetCurrentProcessId
ReleaseSemaphore
WaitForSingleObjectEx
OpenEventA
CreateMutexW
ResetEvent
SetLastError
VerifyVersionInfoW
GetExitCodeProcess
WaitForSingleObject
VerSetConditionMask
SetFileAttributesW
RemoveDirectoryW
GetFileSizeEx
CreateFileW
ReadFile
CopyFileW
WriteFile
SetEvent
HeapFree
CreateEventA
HeapAlloc
GetProcessHeap
GetFileAttributesW
GetLocalTime
Sleep
GetTickCount
FindResourceW
lstrcmpiW
CloseHandle
GetCurrentProcess
GetLastError
DeleteFileW
MoveFileExW
ResumeThread
GetStringTypeExW
lstrlenA
CreateProcessA
UnregisterClassA
UpdateLayeredWindow
SetTimer
ScreenToClient
KillTimer
EnableWindow
SetWindowRgn
ExitWindowsEx
IsCharAlphaNumericW
GetDC
wsprintfW
MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
GetActiveWindow
FindWindowExW
SetCapture
GetFocus
IsWindowEnabled
GetCapture
GetCursorPos
GetWindowTextLengthW
SetRect
TranslateAcceleratorW
MonitorFromPoint
PostQuitMessage
LoadStringA
DialogBoxParamW
MessageBeep
GetMenuItemInfoW
IsDialogMessageW
LoadIconW
TrackPopupMenuEx
InvalidateRect
AppendMenuW
CreatePopupMenu
GetMenuItemCount
RemoveMenu
DestroyMenu
GetMessageW
CharNextW
LoadImageW
SetForegroundWindow
GetClassInfoExW
GetClassInfoW
TranslateMessage
LoadAcceleratorsW
RegisterClassExW
LoadMenuW
PeekMessageW
LoadStringW
MessageBoxW
RegisterClassW
GetSystemMetrics
UpdateWindow
DispatchMessageW
GetWindowDC
IsIconic
TrackMouseEvent
GetWindowInfo
EnumWindows
BringWindowToTop
ReleaseDC
MonitorFromWindow
EndDialog
MapWindowPoints
GetMonitorInfoW
GetWindow
SetFocus
SetWindowTextW
MoveWindow
DrawTextW
IsZoomed
InflateRect
CreateWindowExW
EndPaint
DestroyWindow
SetCursor
GetWindowRect
PostMessageW
LoadCursorW
GetClientRect
BeginPaint
PtInRect
OffsetRect
GetWindowLongW
GetDlgItem
SetWindowLongW
RedrawWindow
SetWindowPos
EnumChildWindows
ShowWindow
IsWindow
AdjustWindowRectEx
IsWindowVisible
SendMessageW
CallWindowProcW
DefWindowProcW
GetParent
ReleaseCapture
SetEntriesInAclW
AddAccessAllowedAce
SetSecurityDescriptorOwner
InitializeAcl
GetNamedSecurityInfoW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyExW
RegSetKeySecurity
GetLengthSid
OpenProcessToken
CloseServiceHandle
OpenThreadToken
OpenSCManagerW
GetUserNameW
SetSecurityDescriptorGroup
OpenServiceW
AccessCheck
DuplicateToken
LookupPrivilegeValueW
AllocateAndInitializeSid
QueryServiceStatusEx
FreeSid
IsValidSecurityDescriptor
ControlService
AdjustTokenPrivileges
ConvertSidToStringSidW
RegSaveKeyExW
RegEnumValueW
RegSetValueExW
DeregisterEventSource
ReportEventA
RegisterEventSourceA
CryptEnumProvidersA
CryptReleaseContext
CryptDestroyKey
CryptGetProvParam
CryptAcquireContextA
CryptGetUserKey
CryptExportKey
CryptDestroyHash
CryptSignHashA
CryptSetHashParam
CryptCreateHash
CryptDecrypt
GetExplicitEntriesFromAclW
GetTokenInformation
RegQueryValueExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetNamedSecurityInfoW
RegCloseKey
CoCreateInstance
CoUninitialize
CoTaskMemRealloc
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoInitializeSecurity
CoInitializeEx
CreateStreamOnHGlobal
ShellExecuteW
ShellExecuteExW
SysAllocString
VariantInit
VariantClear
VarUI4FromStr
SysFreeString
ord413
ord412
ord410
SetViewportOrgEx
BitBlt
CreateRectRgn
CombineRgn
SelectClipRgn
SetBkMode
SetTextColor
CreateSolidBrush
SetBkColor
IntersectClipRect
CreatePen
Rectangle
GetDeviceCaps
DeleteDC
SetStretchBltMode
GetObjectW
CreateFontW
ExtTextOutW
GetDIBits
SetBrushOrgEx
LineTo
GetTextExtentPoint32W
MoveToEx
ExtCreatePen
GetTextColor
SetTextAlign
GetBkColor
GetTextMetricsW
TextOutW
ExcludeClipRect
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
SaveDC
RestoreDC
ExtSelectClipRgn
CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertOpenStore
CertGetCertificateContextProperty
CertFreeCertificateContext
CertDuplicateCertificateContext
ord142
ord127
ord133
ord26
ord79
ord216
ord145
ord14
ord118
ord147
ord167
ord301
ord208
ord41
ord46
ord27
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
ord2
StrCmpIW
StrCmpNIW
EnumProcessModules
GetProcessImageFileNameW
GetModuleFileNameExW
shutdown
gethostname
ioctlsocket
WSACleanup
WSAStartup
WSASetLastError
__WSAFDIsSet
WSAGetLastError
select
recv
send
WSAIoctl
setsockopt
getsockname
ntohs
bind
htons
getsockopt
getpeername
closesocket
socket
connect
freeaddrinfo
getaddrinfo
sendto
recvfrom
accept
listen
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ