Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
494bf26c0323263dbe59f3874305bff0_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
494bf26c0323263dbe59f3874305bff0_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Target
494bf26c0323263dbe59f3874305bff0_JaffaCakes118
Size
36KB
MD5
494bf26c0323263dbe59f3874305bff0
SHA1
af18f5cc4f3ad66352295be665dc230a64deb7d0
SHA256
b9e0204406e5242a5cc7cea3a02a6ba0d4f411e2f62cfb01ff9cffc237968a8b
SHA512
f773f481bb11f7e8e160a07900016acebb4feddd77f39a10e41b2a62c5d224849894eedd7c30f1d7e85dc31affbccda268fed66b72593f35a0d336ce9b002f54
SSDEEP
768:Dx2/nhvzmp+2TnvHbGicuiA1OadYilkj4DZ:DQ/nhC+2DbGicYOYlHN
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
H:\QT_Client\trunk\QQTalk\Output\bin\QTKeyDownWorker.pdb
GetCommandLineW
CreateMutexW
VirtualQuery
FindResourceExW
FindResourceW
FreeLibrary
LoadResource
OutputDebugStringW
LoadLibraryW
SizeofResource
GetModuleFileNameW
GetLastError
GetProcAddress
LockResource
GetCurrentThreadId
CloseHandle
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer
EncodePointer
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
RaiseException
DispatchMessageW
DefWindowProcW
SetTimer
GetMessageW
PostQuitMessage
PostMessageW
KillTimer
TranslateMessage
GetAsyncKeyState
ShowWindow
IsWindow
CreateWindowExW
RegisterClassW
GetSystemMetrics
UpdateWindow
SHGetFolderPathW
PathStripPathW
PathIsDirectoryW
PathFileExistsW
PathAppendW
?_Xlength_error@std@@YAXPBD@Z
WSAStartup
WSACleanup
_controlfp_s
_invoke_watson
??3@YAXPAX@Z
memmove_s
_vscwprintf
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABV01@@Z
wmemcpy_s
wcsnlen
wcsncpy
vswprintf_s
_wcslwr_s
memcpy_s
??2@YAPAXI@Z
free
memset
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
__CxxFrameHandler3
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_crt_debugger_hook
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_CxxThrowException
??0_Mutex@std@@QAE@W4_Uninitialized@1@@Z
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ