LpkEditControl
LpkExtTextOut
LpkGetCharacterPlacement
LpkGetTextExtentExPoint
LpkPSMTextOut
Static task
static1
Behavioral task
behavioral1
Sample
4721f4eaae10f870585a01ee9c58abc6_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4721f4eaae10f870585a01ee9c58abc6_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
4721f4eaae10f870585a01ee9c58abc6_JaffaCakes118
Size
29KB
MD5
4721f4eaae10f870585a01ee9c58abc6
SHA1
1f699b4719a532082954a40ad502664167de0fb1
SHA256
72bc8fe90c32c6fa087c5277276122763a43776c5992ee5a6782d382035250b5
SHA512
48c1c843cbf13b2d1b8c9e69f8ab6d4787bf251dd2c29cba9edb8d7a4b283c309b913f384ea1be77721ebfb7fea99dc465c8d1b70399c9d9856ab1c42c13e643
SSDEEP
192:UP8OZb+4+GAPYpViCeD+tcD3uBBQ6PRQkirW3UwBB1jf:Sbb+PGAPYHKyauBBQARQkoW3UwXF
Checks for missing Authenticode signature.
resource |
---|
4721f4eaae10f870585a01ee9c58abc6_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
lstrcpyA
GetWindowsDirectoryA
GetProcAddress
Sleep
CreateFileA
lstrcatA
ReadFile
GetModuleHandleA
GetModuleFileNameA
Thread32Next
TerminateThread
Thread32First
ExitProcess
GetPrivateProfileStringA
GetCurrentDirectoryA
CreateThread
lstrlenA
VirtualProtect
CreateToolhelp32Snapshot
CloseHandle
KillTimer
SetTimer
wsprintfA
StrStrIA
InternetCloseHandle
InternetReadFile
InternetOpenUrlA
InternetOpenA
strcat
_itoa
_strrev
memcmp
strrchr
_purecall
strncat
strlen
_strlwr
strstr
??2@YAPAXI@Z
memset
??3@YAXPAX@Z
strcpy
LpkEditControl
LpkExtTextOut
LpkGetCharacterPlacement
LpkGetTextExtentExPoint
LpkPSMTextOut
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ