Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
9573f0cf8813af21f8be7420758001de_JaffaCakes118.exe
Resource
win7-20240704-en
Target
9573f0cf8813af21f8be7420758001de_JaffaCakes118
Size
201KB
MD5
9573f0cf8813af21f8be7420758001de
SHA1
c80d0f927545fd99191ec338c1edd939b1a0cf35
SHA256
7f2a282481b1e539112d398a36e46667d62bb68001965c2f6151d04ecb5e1828
SHA512
aaff910ecb30412cdb82b02c183a1b9bd2da8884d3e7d350f63137e6d178cd314b7253e8248f67dce493fe21eda444b2215c4b66b6bdf37eb8b0f714fa27a53c
SSDEEP
6144:AQkTH+bpsnWjv5GOMmALtY1+8XHcRaQa3lRNjPmBLjPK2Sc:UHasWjRGOcLtY1+8MRNaV3j2Sc
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
_controlfp
??1type_info@@UAE@XZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strncmp
tolower
malloc
_ftol
rand
srand
memset
__CxxFrameHandler
memmove
_itoa
_strupr
_except_handler3
GetCurrentProcess
RaiseException
InterlockedExchange
LocalAlloc
FreeLibrary
GetStartupInfoA
GetFileAttributesA
SetFileAttributesA
DeleteFileA
CreateDirectoryA
CreateToolhelp32Snapshot
Process32First
lstrcmpiA
Process32Next
GetModuleFileNameA
GetCurrentThreadId
GetCommandLineA
SetUnhandledExceptionFilter
CreateThread
GetExitCodeThread
ExitThread
IsBadReadPtr
SleepEx
SetEnvironmentVariableA
GetSystemDirectoryA
ExitProcess
GetTickCount
IsBadWritePtr
GetProcAddress
GetModuleHandleA
GetLastError
Sleep
LoadLibraryA
GetCurrentDirectoryA
GetTempPathA
CloseHandle
WriteFile
SetFilePointer
CreateFileA
WaitForSingleObject
CreateEventA
ExpandEnvironmentStringsA
FlashWindow
GetActiveWindow
wsprintfA
PathFileExistsA
SHDeleteKeyA
SHCopyKeyA
SHGetValueA
getprotobynumber
closesocket
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ