Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Static task
static1
Behavioral task
behavioral1
Sample
b5340a44f9b8c1b57a5c79b74f4ba39f_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b5340a44f9b8c1b57a5c79b74f4ba39f_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
b5340a44f9b8c1b57a5c79b74f4ba39f_JaffaCakes118
Size
87KB
MD5
b5340a44f9b8c1b57a5c79b74f4ba39f
SHA1
d21afdaf0f558f72f7a8eb59c6cb9fcb4f5e3582
SHA256
c2e66b1f49422050a6f3d3d6bc773211c428358cf32e068276ef9e5f8e57f7e8
SHA512
8deef44a1b7a9ce0308632f3a2c6402c6db69232b6e79f7b038e8ee1b77731cfbd719812e602fe54d5b9cf57d9f498c0566fbe2b35a85ca6be60034cd459f1a5
SSDEEP
1536:l/9b4ML6Y06ZZ9xu/q+Sz+CVbaPaYhke+ow8d/cnC5CcU1:l/9b4MGY0G9Y/q+MYa8d/cnC5CcU
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
NS_Alloc
NS_StringContainerInit
NS_StringContainerFinish
NS_GetServiceManager
NS_StringCloneData
NS_StringSetDataRange
NS_StringSetData
NS_Free
StrCatW
StrCpyNW
StrNCatW
StrCmpNIW
StrStrW
StrCmpNW
StrToIntW
StrStrIW
wnsprintfW
InternetOpenW
InternetConnectW
HttpSendRequestW
HttpQueryInfoW
HttpOpenRequestW
InternetGetConnectedState
InternetCloseHandle
InternetReadFile
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapSize
RtlUnwind
VirtualAlloc
EnterCriticalSection
WideCharToMultiByte
TerminateThread
Sleep
MultiByteToWideChar
lstrlenW
GetExitCodeThread
CreateThread
HeapReAlloc
CreateMutexW
HeapAlloc
HeapFree
WaitForSingleObject
SleepEx
GetProcessHeap
lstrcpynW
lstrcmpW
GetLastError
ReleaseMutex
CloseHandle
GetComputerNameW
GetVolumeInformationW
GetPrivateProfileStringW
lstrlenA
GetSystemTimeAsFileTime
LeaveCriticalSection
WriteFile
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
VirtualQuery
GetCurrentThreadId
GetCommandLineA
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
RegCreateKeyW
RegCloseKey
RegDeleteValueW
RegOpenKeyW
RegQueryValueExW
RegSetValueExW
SHGetFolderPathW
ShellExecuteW
PR_AtomicDecrement
PR_AtomicIncrement
NSGetModule
checkMemberWelcome
checkUrl
getPluginInfo
getPrimaryContent
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ