Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
b4cc3d99a4763bf4936bf53c92f57c43_JaffaCakes118.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
b4cc3d99a4763bf4936bf53c92f57c43_JaffaCakes118.dll
Resource
win10v2004-20240508-en
Target
b4cc3d99a4763bf4936bf53c92f57c43_JaffaCakes118
Size
547KB
MD5
b4cc3d99a4763bf4936bf53c92f57c43
SHA1
4f7673c6994bc25e92c17e3bb1a20ab5bebf7764
SHA256
7145183ad37208953291a65bf92a11443479f88c626529e5c4f338fea3310ca3
SHA512
4c73fbfbacef61b6a1256bc4f05b800d0b2ab8c2cdf80c57b2e6484f91dc68eedc30fe2e28042a3d84846b6abcd001cfdde9d03eea0604582232abb4d9b4db99
SSDEEP
12288:DiAveI6VYqC2Gw7BOiLMg6TkENSe1y5RFBcLGBGh4S9NVPJQ8tyI4J0uxQp:DiGeFWSFB4B19NVPJpH4J0n
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
E:\tk\Fun Player\Rel2.8.6\src\toolkits\bin\Release\Frama.pdb
HttpQueryInfoA
InternetOpenUrlW
InternetSetOptionA
HttpQueryInfoW
InternetGetConnectedState
InternetOpenA
InternetCloseHandle
InternetReadFile
InternetGetCookieW
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipFree
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromStream
GdipLoadImageFromFileICM
GdipSetClipRect
GdipBeginContainer2
GdipTranslateWorldTransform
GdiplusShutdown
GdipScaleWorldTransform
GdipRotateWorldTransform
GdipReleaseDC
GdipDeleteGraphics
GdipCreateFromHDC
GdipDrawImageRectRect
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipEndContainer
GdipGetImageWidth
GdipDrawLine
GdipDeletePen
GdipCreatePen1
GdipResetClip
GdiplusStartup
GetOEMCP
GetACP
GetStdHandle
ExitProcess
FindResourceW
FreeLibrary
LoadResource
LoadLibraryExW
InterlockedIncrement
InterlockedDecrement
GetModuleHandleW
InitializeCriticalSectionAndSpinCount
SizeofResource
LeaveCriticalSection
GetModuleFileNameW
MultiByteToWideChar
lstrlenW
RaiseException
GetLastError
GetProcAddress
EnterCriticalSection
CreateEventW
lstrcmpiW
DeleteCriticalSection
LockResource
FindResourceExW
GetNativeSystemInfo
GetVersionExW
CloseHandle
TerminateProcess
WaitForSingleObject
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetTempPathW
FindFirstFileW
FindNextFileW
FindClose
InitializeCriticalSection
DeleteFileW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
SetUnhandledExceptionFilter
GetCurrentProcess
FlushInstructionCache
SetLastError
GetCurrentThreadId
GlobalAlloc
GlobalLock
GlobalUnlock
CreateEventA
SetEvent
GetTickCount
MulDiv
lstrcmpW
GetFileType
IsValidCodePage
TlsSetValue
TlsAlloc
TlsFree
GetModuleHandleExA
ResetEvent
LoadLibraryW
CopyFileW
WriteFile
Sleep
WideCharToMultiByte
GetFileAttributesExW
SetFilePointer
ReadFile
CreateFileW
GetCurrentProcessId
GetFileAttributesW
FlushFileBuffers
InterlockedCompareExchange
GetStringTypeW
EncodePointer
DecodePointer
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
InterlockedPopEntrySList
GetStartupInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
TlsGetValue
SetHandleCount
GetSystemTimeAsFileTime
GetCommandLineA
GetTimeZoneInformation
RtlUnwind
LCMapStringW
GetCPInfo
UnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
SetStdHandle
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
OpenEventA
LocalFree
FormatMessageA
InterlockedExchange
ClientToScreen
GetParent
ScreenToClient
FillRect
GetClientRect
InvalidateRgn
CallWindowProcW
GetDesktopWindow
DestroyAcceleratorTable
RegisterClassExW
ReleaseCapture
SetCapture
PostMessageW
SendMessageW
UpdateLayeredWindow
CreateAcceleratorTableW
ReleaseDC
GetDC
InvalidateRect
DefWindowProcW
GetWindowLongW
SetWindowPos
SystemParametersInfoW
DestroyWindow
IsWindow
CreateWindowExW
RegisterClassW
LoadIconW
SetCursor
LoadCursorW
SetWindowLongW
GetClassInfoExW
RedrawWindow
GetSysColor
GetClassNameW
UnregisterClassA
IntersectRect
EqualRect
GetSystemMetrics
SetTimer
UnregisterClassW
KillTimer
WaitMessage
GetQueueStatus
TranslateMessage
CallMsgFilterW
MsgWaitForMultipleObjectsEx
DispatchMessageW
PeekMessageW
RegisterWindowMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
BeginPaint
EndPaint
IsChild
GetFocus
SetFocus
GetWindow
GetWindowDC
GetDlgItem
CreateDialogParamW
ShowWindow
IsWindowVisible
GetWindowRect
MoveWindow
GetForegroundWindow
CharNextW
PostQuitMessage
RegCreateKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CoCreateInstance
CoUninitialize
CoTaskMemRealloc
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
OleUninitialize
StringFromGUID2
OleLockRunning
SHCreateDirectoryExW
SHGetSpecialFolderPathW
ShellExecuteW
LoadTypeLi
SysAllocString
OleCreateFontIndirect
SysStringLen
LoadRegTypeLi
VariantClear
VariantInit
SysAllocStringLen
DispCallFunc
VarUI4FromStr
SysFreeString
PathIsURLW
SHGetValueW
PathFileExistsW
CreateSolidBrush
GetStockObject
GetObjectW
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteObject
DeleteDC
CreateDIBSection
GetDeviceCaps
UrlMkGetSessionOption
runDllW
startupW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ