Always
DownloadDLL
GetPlayerVersion
KingsStop
KingsUp
_JDIS_DISOSD_S
playAdk
Static task
static1
Behavioral task
behavioral1
Sample
3f0c79ff8eadf8699df31a5dc121feca_JaffaCakes118.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
3f0c79ff8eadf8699df31a5dc121feca_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
3f0c79ff8eadf8699df31a5dc121feca_JaffaCakes118
Size
211KB
MD5
3f0c79ff8eadf8699df31a5dc121feca
SHA1
53b6cc9fb6feb286a3f572f5ec25449ddbf04ca3
SHA256
362a33e0d726a46f0af129ef19e8318a8fa1dcef9d4a862c6bc3358243d5af0c
SHA512
f930ad7c5dc533c6f6b40039e813d77d6a9e806497a91da8a2a583e2f047babbf297c317017906685e20f24c5ab73f6ecffe0c15dd10ba2e4f7078b00b80eb71
SSDEEP
3072:XBkUYiHlZW4iL9JC3GzijbS8I725yFCr61Ns7UNpSpBe5sC+iitAtEBsX3M:79neLjC3G/3253rTre5sgitAOH
Checks for missing Authenticode signature.
resource |
---|
3f0c79ff8eadf8699df31a5dc121feca_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
WSACleanup
CoTaskMemFree
InternetReadFile
URLDownloadToFileA
GetForegroundWindow
DeleteObject
RegQueryValueExA
SHGetFolderPathA
SysAllocString
Always
DownloadDLL
GetPlayerVersion
KingsStop
KingsUp
_JDIS_DISOSD_S
playAdk
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE