Always
DSDD_YUNJ_DOSS
DownloadDLL
GetPlayerVersion
KingsStop
KingsUp
playAdk
Static task
static1
Behavioral task
behavioral1
Sample
1503b89fc133d8f6847b5d2450a34002_JaffaCakes118.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1503b89fc133d8f6847b5d2450a34002_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
1503b89fc133d8f6847b5d2450a34002_JaffaCakes118
Size
211KB
MD5
1503b89fc133d8f6847b5d2450a34002
SHA1
77632b40e9777acc8ef12016be06e44659e56d1d
SHA256
b475f75827e8844676ccee6e3ffb04bf89d174a99e02e4bb6ca606922dbf7e8d
SHA512
f713ca3c091599e90fa48fb800668e66b0dbabf29b06042d7ee624b0fa951b47f5fa1d41c49b585efd05fc924c8e71866fb475eddd9544cc7e94f49ad15e597a
SSDEEP
3072:6WHEbkJiyTitphRL2xTlm5/vaUe5k1UpfXYpYzH6Sadzl+k3l9crob8iGI/X3j:6WkvaitphqTw53a4IBaF5V9jTr
Checks for missing Authenticode signature.
resource |
---|
1503b89fc133d8f6847b5d2450a34002_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
WSACleanup
CoTaskMemFree
InternetReadFile
URLDownloadToFileA
GetForegroundWindow
CreateCompatibleDC
RegQueryValueExA
SHGetFolderPathA
SysAllocString
Always
DSDD_YUNJ_DOSS
DownloadDLL
GetPlayerVersion
KingsStop
KingsUp
playAdk
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE