Static task
static1
Behavioral task
behavioral1
Sample
4c878be1f908f1aa226831557f833ccf_JaffaCakes118.exe
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral2
Sample
4c878be1f908f1aa226831557f833ccf_JaffaCakes118.exe
Resource
win10v2004-20240426-en
windows10-2004-x64
Target
4c878be1f908f1aa226831557f833ccf_JaffaCakes118
Size
12.8MB
MD5
4c878be1f908f1aa226831557f833ccf
SHA1
21da9ff8f1195fb2909940d1ffba734045e5ad1f
SHA256
020992e80f208a8e907ed9fef2ea608f50acaf20cf1c9c24d8cd25eb9de48351
SHA512
81061032f94af974351aa6890b53a897f130be593f96013cf9149d32ed82621bb81fe423f8bc048ea385f5ebcafac5a36e4eee86beafd62773819bc2188c425b
SSDEEP
196608:8sEUQX5L5PeT6QTuQWvd4GPhmwNuXL77iB7UCWNcTjDCmMQ/F25ihMbdMYKK3:8DjZ5wgQWv6ZwEXH+9U/NcuxcXedh3
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
C:\vmagent_new\bin\joblist\261601\out\Release\Install.pdb
OpenProcess
VirtualAllocEx
WriteProcessMemory
ReadProcessMemory
VirtualFreeEx
WideCharToMultiByte
GetDiskFreeSpaceExW
GetDriveTypeW
GetVersionExW
GetTickCount
GetProcAddress
lstrcmpiW
LoadLibraryExW
MultiByteToWideChar
FreeLibrary
GetLastError
lstrlenW
GetModuleFileNameW
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
GetCommandLineW
OutputDebugStringA
GetSystemTime
OutputDebugStringW
GetStartupInfoW
CreateProcessW
lstrcmpiA
lstrcmpA
CreateWaitableTimerA
SetWaitableTimer
ResumeThread
OpenEventA
CreateToolhelp32Snapshot
Process32FirstW
Module32FirstW
Module32NextW
Process32NextW
CreateFileW
LockFile
GetFileSize
ReadFile
UnlockFile
CloseHandle
DeleteCriticalSection
RaiseException
SetLastError
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
DeleteFileW
GlobalFindAtomW
GlobalAddAtomW
GetShortPathNameW
GlobalDeleteAtom
Sleep
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
WritePrivateProfileStringW
SetEnvironmentVariableW
SetEnvironmentVariableA
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
SetConsoleCtrlHandler
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStartupInfoA
SetHandleCount
GetModuleHandleA
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
FatalAppExitA
HeapCreate
GetModuleFileNameA
IsValidCodePage
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetStringTypeW
GetDateFormatA
GetTimeFormatA
GetCPInfo
LCMapStringA
SetStdHandle
ExitProcess
GetFileType
WriteConsoleW
CreateThread
ExitThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
TlsFree
DeleteAtom
FindAtomW
TlsAlloc
AddAtomW
FindResourceExW
LoadResource
LockResource
OpenThread
GetAtomNameW
TlsSetValue
TlsGetValue
SetFilePointerEx
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
SystemTimeToFileTime
CreateFileA
GetLocaleInfoA
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
HeapSize
HeapReAlloc
HeapDestroy
MulDiv
InterlockedCompareExchange
InterlockedExchange
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
DeleteFileA
OpenMutexW
GetCurrentThread
FindFirstChangeNotificationW
FindCloseChangeNotification
SearchPathW
GetCurrentDirectoryW
GetWindowsDirectoryW
SetEndOfFile
SetFileTime
GetFileInformationByHandle
CompareFileTime
lstrcpynW
lstrcmpW
ProcessIdToSessionId
WTSGetActiveConsoleSessionId
CreateMutexW
ReleaseMutex
GetFileSizeEx
GetExitCodeThread
TerminateThread
SetFilePointer
lstrlenA
GetConsoleWindow
AllocConsole
GetStdHandle
GetFileAttributesExW
GetFileTime
DeviceIoControl
FlushFileBuffers
SizeofResource
FindResourceW
HeapAlloc
CreateEventA
GetProcessHeap
HeapFree
GetSystemDefaultLangID
WaitForMultipleObjects
GetPrivateProfileStringW
LocalAlloc
GetEnvironmentVariableW
LocalFree
GetSystemInfo
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
CreateEventW
ResetEvent
WriteFile
LCMapStringW
lstrcpyW
GetSystemDirectoryW
GetLogicalDriveStringsW
MoveFileExW
CopyFileW
GetCurrentProcessId
TerminateProcess
GetLongPathNameW
WaitForSingleObject
GetExitCodeProcess
LoadLibraryW
GetSystemWindowsDirectoryW
GetFileAttributesW
SetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
RemoveDirectoryW
GetFullPathNameW
GetTempPathW
FormatMessageW
SetEvent
GetLocalTime
CreateDirectoryW
GetTempFileNameW
MoveFileW
TranslateMessage
GetMessageW
PeekMessageW
RegisterClassExW
LoadCursorW
GetClassInfoExW
CreateWindowExW
DestroyWindow
OffsetRect
IsRectEmpty
CopyRect
DispatchMessageW
BeginPaint
KillTimer
SetTimer
GetWindowRect
SetWindowPos
PostQuitMessage
SystemParametersInfoW
UpdateLayeredWindow
CallWindowProcW
SetWindowLongW
CreateIconFromResource
CreateIconFromResourceEx
EndPaint
CreateDialogParamW
LookupIconIdFromDirectory
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
DefWindowProcW
GetParent
ShowWindow
InvalidateRect
ExitWindowsEx
SetWindowTextW
MoveWindow
BringWindowToTop
CharNextW
FillRect
GetWindowDC
ReleaseDC
ScreenToClient
GetSystemMetrics
GetClientRect
GetWindowLongW
SendMessageW
MapWindowPoints
IsWindow
PostMessageW
GetWindowThreadProcessId
FindWindowW
FindWindowExW
GetWindowTextLengthW
GetWindowTextW
MessageBoxW
SendMessageTimeoutW
PostThreadMessageW
LoadStringW
GetShellWindow
WaitForInputIdle
GetActiveWindow
IsWindowVisible
SetRect
SetCursor
IsDialogMessageW
DialogBoxParamW
EndDialog
SetWindowRgn
PtInRect
UnregisterClassA
RedrawWindow
GetDC
GetWindow
MonitorFromWindow
GetMonitorInfoW
LoadImageW
GetStockObject
GetTextExtentPoint32W
DeleteDC
ExtTextOutW
SetBkColor
CreateCompatibleDC
SelectObject
SetViewportOrgEx
CreateCompatibleBitmap
DeleteObject
StretchBlt
CreateHalftonePalette
EnumFontFamiliesW
CreateDIBSection
SetDIBColorTable
SetPixelV
GdiFlush
SetDIBitsToDevice
CreateSolidBrush
GetPixel
SaveDC
RestoreDC
BitBlt
SetStretchBltMode
CreateFontW
CreateRectRgn
CombineRgn
GetDeviceCaps
GetPaletteEntries
CreateFontIndirectW
RegDeleteValueW
CreateProcessAsUserW
RegOpenCurrentUser
OpenSCManagerW
OpenServiceW
QueryServiceStatus
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryInfoKeyW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
CloseServiceHandle
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
OpenThreadToken
RegEnumValueW
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
ImpersonateLoggedOnUser
GetTokenInformation
RegCreateKeyW
DuplicateTokenEx
CreateWellKnownSid
GetLengthSid
SetTokenInformation
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
SetNamedSecurityInfoW
SetEntriesInAclW
BuildExplicitAccessWithNameW
GetNamedSecurityInfoW
DeleteAce
GetTrusteeNameW
EqualSid
GetUserNameW
LookupAccountNameW
LookupAccountSidW
GetExplicitEntriesFromAclW
RevertToSelf
SHGetDesktopFolder
SHGetMalloc
SHGetFolderPathA
SHCreateDirectoryExA
SHGetFolderPathW
ord165
ord680
SHCreateDirectoryExW
SHChangeNotify
SHFileOperationW
ShellExecuteExW
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW
SHGetSpecialFolderPathW
CommandLineToArgvW
SHGetSpecialFolderLocation
CoSetProxyBlanket
CreateStreamOnHGlobal
StringFromGUID2
CoInitializeSecurity
OleRun
CLSIDFromProgID
CoInitializeEx
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoCreateGuid
CoUninitialize
CoInitialize
VariantChangeType
GetErrorInfo
SetErrorInfo
CreateErrorInfo
SysStringLen
VariantInit
VarUI4FromStr
SysFreeString
VariantClear
SysAllocStringByteLen
SysStringByteLen
SysAllocString
VariantCopy
StrToIntExW
SHGetValueA
SHSetValueA
PathRemoveFileSpecW
PathCombineW
SHSetValueW
PathFileExistsW
PathAppendW
SHGetValueW
PathIsDirectoryW
PathIsRelativeW
PathFindExtensionW
PathFindFileNameW
SHDeleteValueW
SHDeleteKeyW
wnsprintfW
PathIsPrefixW
AssocQueryStringW
PathCanonicalizeW
PathCompactPathW
PathFindExtensionA
PathFindFileNameA
PathRelativePathToW
StrStrW
PathIsRootW
StrCmpW
InitCommonControlsEx
_TrackMouseEvent
GdipAlloc
GdipCreatePen1
GdipDeletePen
GdipSetPenStartCap
GdipSetPenEndCap
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetSmoothingMode
GdipDrawLine
GdipDrawString
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipCreateFont
GdipDeleteFont
GdiplusStartup
GdiplusShutdown
GdipDisposeImage
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDeleteBrush
GdipFree
GdipCloneBrush
GdipCreateSolidFill
GdipMeasureString
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipDrawImagePointRectI
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipSetStringFormatTrimming
GdipSetTextRenderingHint
GdipCreateImageAttributes
EnumProcesses
EnumProcessModules
GetModuleFileNameExW
GetUserNameExW
SetupIterateCabinetW
WTHelperProvDataFromStateData
WinVerifyTrust
CertGetNameStringW
InternetCrackUrlW
InternetGetConnectedState
URLDownloadToCacheFileW
URLDownloadToCacheFileA
URLDownloadToFileW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
WTSQueryUserToken
CreateEnvironmentBlock
timeGetTime
GetAdaptersInfo
Netbios
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ