CopyFileRoutine
DownloadNews
GetUrlObject
Hook
PostUninstallMessage2Server
Upgrade
Static task
static1
Behavioral task
behavioral1
Sample
07d8763889d3f1ea42e3203758a00cae_JaffaCakes118.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
07d8763889d3f1ea42e3203758a00cae_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
07d8763889d3f1ea42e3203758a00cae_JaffaCakes118
Size
156KB
MD5
07d8763889d3f1ea42e3203758a00cae
SHA1
d2469149dcb7ad4166bca611f50e9414c0d4f76f
SHA256
2ddbcdedbd374a7651ef8fd5f1d6ea0f0cd6d43f87ecb569a939ee49d12590f9
SHA512
41c5dd0f6b1cbd3797817fc0f50bb19ddcd8608e2af72bef21a7d3d933aba7b6b20fa1d7b1dc6ed63dc2ed033d96a4c94a9ad9a375841c7985f1d249220ac4bc
SSDEEP
3072:g5Q+YTqblKX5lMO0GWRsgIKJBa80qdk2o1NorbxSF6B:gmnTqb2lMO0GUsXDbV3NebaY
Checks for missing Authenticode signature.
resource |
---|
07d8763889d3f1ea42e3203758a00cae_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
recv
WSACleanup
closesocket
htons
gethostbyname
inet_ntoa
connect
send
socket
inet_addr
getprotobyname
setsockopt
WSAStartup
StrToIntA
SetupIterateCabinetA
InternetCrackUrlA
SetStdHandle
lstrlenA
lstrcatA
lstrcpyA
GetSystemDefaultLangID
InterlockedIncrement
InterlockedDecrement
CreateFileA
CloseHandle
ReadFile
WriteFile
GetFileSize
CopyFileA
MoveFileExA
DeleteFileA
GetFileTime
SetFileTime
GetTempPathA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
DebugBreak
OutputDebugStringA
GetStringTypeExA
GetThreadLocale
GetLastError
CreateMutexA
DisableThreadLibraryCalls
lstrcmpA
FlushFileBuffers
GetSystemInfo
HeapCreate
InitializeCriticalSection
HeapDestroy
LCMapStringW
EnterCriticalSection
GetCurrentThreadId
FlushInstructionCache
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetShortPathNameA
SystemTimeToFileTime
lstrcpynA
GetPrivateProfileSectionA
SetFilePointer
GetVersionExA
GetSystemDirectoryA
GetModuleFileNameA
GetLocalTime
WaitForSingleObject
CreateThread
WinExec
lstrcmpiA
CreateDirectoryA
TerminateThread
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetStringTypeA
DeleteCriticalSection
LCMapStringA
LeaveCriticalSection
HeapAlloc
GetStringTypeW
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
GetEnvironmentStrings
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
FreeEnvironmentStringsA
WideCharToMultiByte
GetFileType
GetStdHandle
GetStartupInfoA
HeapSize
TerminateProcess
SetHandleCount
VirtualAlloc
VirtualFree
IsBadWritePtr
ExitProcess
SetLastError
TlsFree
TlsGetValue
TlsSetValue
GetVersion
TlsAlloc
HeapFree
HeapReAlloc
GetCommandLineA
GetCPInfo
GetACP
GetOEMCP
RtlUnwind
PeekMessageA
CharLowerA
SetWindowLongA
GetActiveWindow
CharNextA
RemovePropA
wvsprintfA
DialogBoxParamA
CallWindowProcA
GetPropA
SendMessageTimeoutA
FindWindowA
PostThreadMessageA
GetWindow
CharUpperA
PostMessageA
MapWindowPoints
SystemParametersInfoA
GetClientRect
GetWindowTextA
SetWindowPos
MoveWindow
GetSystemMetrics
UpdateWindow
EndDialog
SetFocus
LoadImageA
SetWindowTextA
GetDlgItem
IsDialogMessageA
GetWindowLongA
GetParent
SetPropA
SetCapture
GetCapture
InvalidateRect
PtInRect
GetWindowRect
ReleaseCapture
LoadCursorA
SetCursor
wsprintfA
LoadStringA
SendMessageA
ClientToScreen
SetTextColor
GetObjectA
CreateFontIndirectA
DeleteObject
RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
ShellExecuteA
OleInitialize
OleUninitialize
CopyFileRoutine
DownloadNews
GetUrlObject
Hook
PostUninstallMessage2Server
Upgrade
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ