Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
24529de5637f36555037318e39ebbbb3_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
24529de5637f36555037318e39ebbbb3_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Target
24529de5637f36555037318e39ebbbb3_JaffaCakes118
Size
555KB
MD5
24529de5637f36555037318e39ebbbb3
SHA1
5a21837ea2a7e95c7a08f03daa7c980e388495f9
SHA256
1ddb54f92661f6791d0d843a001dff36bdf0a0f93170df5ef40eca99c60d5876
SHA512
d52e6ef007ee4d3d2181d78edc498d814bf1e92fe48970b04ccd668d4f7fe5a96621320b34bde66fac70a4b6d91c6bc74721ed958e49d5ad2240aec4560190a9
SSDEEP
12288:I8sEul1FKIWvbVx7hiQKFHyLtsLqP2fZ/XcjhojmieeVAZgpbHbc2d5py5Fij:I8jeUrqflViuf5O
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
C:\b\build\slave\foil_win_release_builder\build\src\out\Release\software_reporter_tool.exe.pdb
InternetSetOptionW
timeEndPeriod
timeGetTime
timeBeginPeriod
RtlCaptureStackBackTrace
RtlCaptureContext
RtlUnwind
QueryServiceStatusEx
OpenServiceW
OpenSCManagerW
ControlService
CloseServiceHandle
OpenProcessToken
GetTokenInformation
RegCreateKeyExW
RegQueryValueExW
RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteValueW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
GetTraceEnableFlags
GetTraceLoggerHandle
TraceEvent
UnregisterTraceGuids
GetTraceEnableLevel
RegisterTraceGuidsW
ConvertSidToStringSidW
RegOverridePredefKey
QueueUserWorkItem
GetSystemDirectoryW
GetWindowsDirectoryW
Process32FirstW
Process32NextW
CreateToolhelp32Snapshot
GetFullPathNameW
GetDriveTypeW
CreateMutexW
SetFilePointer
WaitForSingleObject
GetTickCount
FormatMessageA
WriteFile
GetModuleFileNameW
CreateFileW
GetLastError
SetLastError
OutputDebugStringA
ReleaseMutex
CloseHandle
DeleteFileW
GetCurrentProcessId
GetCommandLineW
LocalFree
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetCurrentProcess
Sleep
RaiseException
IsDebuggerPresent
GetCurrentThreadId
CreateThread
TlsGetValue
TlsSetValue
TlsAlloc
TlsFree
GetQueuedCompletionStatus
InterlockedExchange
PostQueuedCompletionStatus
CreateIoCompletionPort
QueryPerformanceCounter
GetSystemTimeAsFileTime
QueryPerformanceFrequency
GetModuleHandleExW
GetProcAddress
GetNativeSystemInfo
InterlockedCompareExchange
GetModuleHandleW
GetVersionExW
OpenProcess
GetProcessId
SetEvent
ResetEvent
CreateEventW
WaitForMultipleObjects
GetModuleHandleExA
GetModuleHandleA
ExpandEnvironmentStringsW
GetTempPathW
WaitNamedPipeW
TerminateProcess
OpenEventW
InitializeCriticalSection
ReleaseSemaphore
InterlockedIncrement
VirtualQueryEx
FreeLibrary
CreateSemaphoreW
LoadLibraryW
SetNamedPipeHandleState
TransactNamedPipe
FindNextFileW
FindClose
FindFirstFileExW
FindFirstFileW
GetCurrentDirectoryW
GetFileAttributesW
SetUnhandledExceptionFilter
LoadLibraryExA
WideCharToMultiByte
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
IsProcessorFeaturePresent
HeapFree
GetConsoleCP
GetConsoleMode
ExitProcess
HeapReAlloc
HeapAlloc
GetCPInfo
UnhandledExceptionFilter
GetStartupInfoW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapSize
GetProcessHeap
GetStdHandle
GetFileType
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
FlushFileBuffers
SetStdHandle
SetFilePointerEx
WriteConsoleW
IsValidCodePage
GetACP
GetOEMCP
LoadLibraryExW
OutputDebugStringW
SetEnvironmentVariableA
CoTaskMemFree
CoCreateGuid
StringFromGUID2
DestroyWindow
SetTimer
PostQuitMessage
UnregisterClassW
PostMessageW
KillTimer
GetQueueStatus
TranslateMessage
RegisterClassExW
CallMsgFilterW
PeekMessageW
MsgWaitForMultipleObjectsEx
CreateWindowExW
DefWindowProcW
WaitMessage
DispatchMessageW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE