Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
b60d9504003f5ff1e5bcab3202887ebc_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b60d9504003f5ff1e5bcab3202887ebc_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Target
b60d9504003f5ff1e5bcab3202887ebc_JaffaCakes118
Size
173KB
MD5
b60d9504003f5ff1e5bcab3202887ebc
SHA1
74ce313d218525e86142ed63d5cb140d8d189fea
SHA256
133e9159dbcaf97869b45727e9ce8d408eb24aa39ca440f050b4f34272e84db8
SHA512
a861af4d9d114d698c36348d397db986830d01ba2e30ed9451f14b707722d87073c8cdc357d2298ef8fcc4a80e4339024ffcc4bf939d8c3aac30a66c63220de4
SSDEEP
3072:VoSaoP4rZJjmhiVvN+olpisfX5v4nOQaPoN1wEdbYZTLQI5SfPY3D54kG9ZP/Sb9:YooZJGmN+gel3Ner
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GoogleUpdate_unsigned.pdb
RegOpenKeyExW
GetCommandLineW
HeapReAlloc
FindResourceExW
FindResourceW
FreeLibrary
LoadResource
HeapAlloc
LoadLibraryExW
HeapFree
GetProcessHeap
InitializeCriticalSectionAndSpinCount
SizeofResource
HeapDestroy
GetModuleFileNameW
RaiseException
GetLastError
GetProcAddress
HeapSize
LockResource
DecodePointer
GetFileAttributesExW
DeleteCriticalSection
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetStringTypeW
IsDebuggerPresent
OutputDebugStringW
EnterCriticalSection
LeaveCriticalSection
EncodePointer
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
SetLastError
GetCurrentThreadId
GetStdHandle
GetFileType
GetStartupInfoW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
LCMapStringW
CreateFileW
SHGetFolderPathW
CharLowerBuffW
PathRemoveFileSpecW
PathAppendW
SHQueryValueExW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE