InstallService
KsCreateAllocator
KsCreateClock
KsCreatePin
KsCreateTopologyNode
zhkf
zhko
Static task
static1
Behavioral task
behavioral1
Sample
2451105a2853890ebf68d42f6d8c80d4_JaffaCakes118.dll
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2451105a2853890ebf68d42f6d8c80d4_JaffaCakes118.dll
Resource
win10v2004-20240611-en
Target
2451105a2853890ebf68d42f6d8c80d4_JaffaCakes118
Size
46KB
MD5
2451105a2853890ebf68d42f6d8c80d4
SHA1
faacf97caf01e8138e343cafe7ad9a65853a1021
SHA256
3f201d2a1cb14250f0c8f163705e093e149e668292fd6f8ba0c3122f8347c7e9
SHA512
0c65687a4585f89254676ba6a03d1547b2aa140868d15181d99b7cef5be76da83c372450e7bc381fc5a16bb5579f6335bfcc4eaab2b697e170873a160e81d90c
SSDEEP
768:yWrSIUQ9ELLnMByneT5dhpMOKOqtMMiVBV:BrSIUQ94LWy49KOqtTiVBV
Checks for missing Authenticode signature.
resource |
---|
2451105a2853890ebf68d42f6d8c80d4_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
MultiByteToWideChar
GlobalFree
GlobalUnlock
WriteFile
CreateFileA
GlobalLock
GlobalAlloc
IsBadReadPtr
ReadFile
CreateThread
CopyFileA
lstrcmpA
WideCharToMultiByte
DeleteFileA
GetModuleFileNameA
GetCurrentProcessId
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
GetLastError
CreateMutexA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
lstrcpynA
lstrcpyA
lstrlenA
GetTickCount
Sleep
CreateToolhelp32Snapshot
Process32First
lstrcmpiA
Process32Next
CloseHandle
VirtualProtect
GetTempPathA
GetSystemDirectoryA
lstrcatA
LoadLibraryA
GetProcAddress
FreeLibrary
OutputDebugStringA
GetPrivateProfileStringA
IsDebuggerPresent
PrintWindow
FindWindowA
FindWindowExA
GetWindowInfo
GetDC
IsRectEmpty
GetWindowThreadProcessId
SetForegroundWindow
ShowWindow
GetActiveWindow
IsIconic
IsWindowVisible
GetWindowTextA
GetSystemMetrics
EnumWindows
wsprintfA
CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
PostThreadMessageA
ReleaseDC
CreateDCA
DeleteObject
BitBlt
GetDeviceCaps
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
GetObjectA
GetStockObject
SelectPalette
SelectObject
GetDIBits
RealizePalette
GdipCloneImage
GdiplusStartup
GdiplusShutdown
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToFile
GdipDisposeImage
GdipLoadImageFromFile
GdipAlloc
GdipFree
InternetSetOptionA
InternetCloseHandle
InternetOpenA
HttpEndRequestA
HttpSendRequestExA
HttpAddRequestHeadersA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetReadFile
memset
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
memmove
free
malloc
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
strstr
InstallService
KsCreateAllocator
KsCreateClock
KsCreatePin
KsCreateTopologyNode
zhkf
zhko
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ