Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
670ec90f73126f0a93754781407d845e_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
670ec90f73126f0a93754781407d845e_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Target
670ec90f73126f0a93754781407d845e_JaffaCakes118
Size
1.1MB
MD5
670ec90f73126f0a93754781407d845e
SHA1
995d6bf0ad8976d1948a96ae51ee7263c874adbc
SHA256
faf6cf73c62e7e04ea1d703665f25996b95fe96b8022b8417b05c6ba7c5d4dd2
SHA512
b58d8bb4672b4fd97f92c58070a91601c1fb74e22fc9e26c9e88339cc2360a02a97db79d4eeeb27f16fe3a03a169f05e9a6d426cf6ef97ef655d368b0c41eb5b
SSDEEP
24576:ml2+i6Ae2yI7joXZkDw/H+7LlKeomdf/li0f/lic:82+i6AnyI7joXZky+vlKFmdf/Ff/l
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
E:\clientci\workspace\ime_compile_branch_5_0_3900_0_for_lenovo\Basic\Outputs\Release\cellinst.pdb
FreeLibraryAndExitThread
GetTickCount
GetFileSize
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
HeapDestroy
HeapSize
WideCharToMultiByte
ExpandEnvironmentStringsW
GetTempPathW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetErrorMode
OpenProcess
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
WaitForMultipleObjects
OutputDebugStringW
GetLocalTime
RemoveDirectoryW
MoveFileExW
QueryPerformanceCounter
FindFirstFileW
FindNextFileW
FindClose
CreateDirectoryW
VerSetConditionMask
VerifyVersionInfoW
CreateSemaphoreW
ReleaseSemaphore
InterlockedCompareExchange
FreeLibrary
GetProcAddress
WaitNamedPipeW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
CreateFileA
GetWindowsDirectoryW
GetDiskFreeSpaceExW
GetSystemInfo
GetSystemDirectoryW
GetComputerNameW
GetSystemTimeAsFileTime
EncodePointer
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
IsDebuggerPresent
WriteFileEx
ReadFileEx
LocalAlloc
LocalFree
GetLastError
SetLastError
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
WaitForSingleObject
CloseHandle
CreateMutexW
LoadLibraryW
GetModuleHandleExW
GetTempFileNameW
SetFileAttributesW
GetFileAttributesW
DeleteFileW
CopyFileW
MoveFileW
GetVersionExW
DecodePointer
InterlockedIncrement
InterlockedDecrement
GlobalMemoryStatusEx
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
RaiseException
SetUnhandledExceptionFilter
GetCurrentThreadId
GetOverlappedResult
InitializeCriticalSectionAndSpinCount
SetEvent
Sleep
LoadResource
SizeofResource
WriteFile
ReadFile
SetNamedPipeHandleState
lstrcmpiW
CreateEventW
LoadLibraryExW
GetModuleFileNameW
GetModuleHandleW
CreateProcessW
GetCommandLineW
FindResourceW
GetPrivateProfileStringW
CreateFileW
AddVectoredExceptionHandler
RemoveVectoredExceptionHandler
MultiByteToWideChar
LockResource
FlushInstructionCache
lstrlenW
CompareStringW
DisconnectNamedPipe
CancelIo
ConnectNamedPipe
CreateNamedPipeW
OpenThread
TerminateThread
SwitchToThread
CreateThread
ResetEvent
InterlockedExchange
CallWindowProcW
DefWindowProcW
SendMessageW
CharNextW
UnregisterClassW
RegisterWindowMessageW
DestroyWindow
CreateWindowExW
CloseDesktop
OpenDesktopW
KillTimer
SetTimer
PostThreadMessageW
LoadStringW
AllowSetForegroundWindow
MsgWaitForMultipleObjects
RegisterClassW
GetClassInfoW
PostQuitMessage
DispatchMessageW
TranslateMessage
PeekMessageW
MsgWaitForMultipleObjectsEx
SendMessageTimeoutW
GetWindowThreadProcessId
FindWindowExW
PostMessageW
RegisterClassExW
GetClassInfoExW
GetMonitorInfoW
MonitorFromWindow
SystemParametersInfoW
LoadImageW
LoadCursorW
LoadBitmapW
GetWindow
GetClassNameW
GetParent
SetWindowLongW
GetWindowLongW
PtInRect
OffsetRect
SetRectEmpty
FillRect
DrawFocusRect
GetSysColor
MapWindowPoints
ScreenToClient
GetCursorPos
SetCursor
GetWindowRect
GetClientRect
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
DrawTextW
GetSystemMetrics
IsWindow
ShowWindow
SetWindowPos
BringWindowToTop
DialogBoxParamW
IsWindowEnabled
ReleaseCapture
SetCapture
GetCapture
GetFocus
GetActiveWindow
SetFocus
GetDlgCtrlID
SendDlgItemMessageW
GetDlgItem
EndDialog
SetTextColor
SetBkMode
GetObjectW
GetStockObject
SelectObject
DeleteDC
CreateSolidBrush
CreateFontIndirectW
DeleteObject
AllocateAndInitializeSid
FreeSid
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorSacl
LookupAccountSidW
GetAclInformation
AccessCheck
MapGenericMask
DuplicateToken
GetFileSecurityW
AddAce
InitializeSid
InitializeAcl
GetSidLengthRequired
GetAce
GetSidIdentifierAuthority
IsValidSid
SetNamedSecurityInfoW
BuildExplicitAccessWithNameW
GetNamedSecurityInfoW
RegEnumValueW
RegOpenKeyW
RegEnumKeyW
ConvertSidToStringSidW
CreateProcessAsUserW
GetLengthSid
SetTokenInformation
DuplicateTokenEx
GetSidSubAuthority
GetSidSubAuthorityCount
RegSetValueW
RegCreateKeyW
GetSecurityDescriptorDacl
RegSetKeySecurity
RegGetKeySecurity
AdjustTokenPrivileges
LookupPrivilegeValueW
ConvertStringSidToSidW
GetTokenInformation
OpenProcessToken
RegQueryValueExW
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetEntriesInAclW
GetSecurityDescriptorSacl
GetUserNameW
ord51
ord165
SHChangeNotify
SHFileOperationW
CommandLineToArgvW
ShellExecuteW
SHGetFolderPathW
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
StringFromIID
IIDFromString
CoTaskMemRealloc
SysFreeString
SysAllocString
VarUI4FromStr
PathFindFileNameW
PathRemoveFileSpecW
PathFileExistsW
SHDeleteKeyW
PathFindExtensionW
PathAppendW
_TrackMouseEvent
InitCommonControlsEx
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ
?rdstate@ios_base@std@@QBEHXZ
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_1@placeholders@std@@3V?$_Ph@$00@2@A
?_2@placeholders@std@@3V?$_Ph@$01@2@A
?_3@placeholders@std@@3V?$_Ph@$02@2@A
?_4@placeholders@std@@3V?$_Ph@$03@2@A
?_Xbad_function_call@std@@YAXXZ
?_Winerror_map@std@@YAPBDH@Z
??0id@locale@std@@QAE@I@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?_BADOFF@std@@3_JB
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE_N_N@Z
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
?pbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?uncaught_exception@std@@YA_NXZ
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
??Bid@locale@std@@QAEIXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?is@?$ctype@_W@std@@QBE_NF_W@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Syserror_map@std@@YAPBDH@Z
?good@ios_base@std@@QBE_NXZ
?eof@ios_base@std@@QBE_NXZ
?flags@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
ImmDisableIME
wcsncmp
wcsncat_s
_controlfp_s
fseek
_set_invalid_parameter_handler
free
malloc
_recalloc
??_V@YAXPAX@Z
memcpy_s
wcsncpy_s
wcsstr
swprintf_s
vswprintf_s
calloc
_wtoi
wcscpy_s
_hypot
_snwprintf_s
?terminate@@YAXXZ
wcsrchr
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
_wcsicmp
_wsplitpath_s
rand
vsprintf_s
_vsnwprintf
swscanf_s
srand
_time64
_invoke_watson
__crtSetUnhandledExceptionFilter
_except_handler4_common
_commode
_fmode
_wcmdln
_initterm
_initterm_e
__setusermatherr
_configthreadlocale
_cexit
_exit
exit
__set_app_type
__wgetmainargs
_amsg_exit
__crtGetShowWindowMode
_XcptFilter
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
memmove_s
_findclose
_wfindnext64i32
_wfindfirst64i32
wcspbrk
??8type_info@@QBE_NABV0@@Z
tolower
isupper
sprintf_s
strtod
_strtoui64
_strtoi64
strtoul
strtol
_wcslwr_s
_itow_s
memchr
isspace
isalnum
wcstoul
wcscspn
wcsspn
_wcsnicmp
wcschr
_vsnprintf
_vscprintf
_snprintf_s
_vscwprintf
??3@YAXPAX@Z
_purecall
??2@YAPAXI@Z
memmove
_waccess
_waccess_s
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
_CxxThrowException
__CxxFrameHandler3
__RTDynamicCast
memcpy
memset
_wfopen_s
fclose
fgetpos
fread
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
WinVerifyTrust
CertGetNameStringW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ