Btgobb
Cthzj
Imicimvvme
Nmyc
Static task
static1
Behavioral task
behavioral1
Sample
c2729d71ed0effb6de5ed8b224da9aa8_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c2729d71ed0effb6de5ed8b224da9aa8_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
c2729d71ed0effb6de5ed8b224da9aa8_JaffaCakes118
Size
46KB
MD5
c2729d71ed0effb6de5ed8b224da9aa8
SHA1
5849392223012cb43e2e4018100d6729ba66c29d
SHA256
4a36d3bfdd20621566fe4df4bcd521183eb046460392f0b356479d1c27c8b137
SHA512
4e8820f45c8b754d14a631bb88ad22dfb01edfa042f9a71670041d68f174fe1a6cc7c386edaed78a420557942b9ec5a849038253e8126a6599497c73d594d490
SSDEEP
768:hd5qboQfxh4WBUOrZZW5exqUZb8B0xDE0Gyq+o+zEui:UoqBBTtZKMqUZbDxDtGP+Fz
Checks for missing Authenticode signature.
resource |
---|
c2729d71ed0effb6de5ed8b224da9aa8_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
CloseHandle
EnumResourceNamesA
ExitProcess
FreeResource
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
LocalAlloc
RtlUnwind
SetUnhandledExceptionFilter
SleepEx
TlsFree
TlsGetValue
TlsSetValue
WriteFile
lstrcpyA
lstrcpynA
lstrlenA
ToAscii
LoadImageA
IsCharUpperA
IsCharLowerA
EndPaint
EndDialog
EnableScrollBar
EmptyClipboard
DrawIcon
DrawCaption
DestroyMenu
CreateDesktopA
LsaEnumerateAccountRights
LsaGetUserName
LsaICLookupNames
LsaLookupNames
LsaLookupPrivilegeDisplayName
RegEnumKeyA
LsaCreateTrustedDomain
LsaCreateSecret
LsaCreateAccount
LsaDeleteTrustedDomain
__vbaCyForInit
__vbaCyAdd
__vbaCheckType
__vbaForEachAry
__vbaError
__vbaErase
__vbaDateVar
__vbaCySgn
__vbaCyMulI2
__vbaCyMul
__vbaCyI4
__vbaBoolStr
__vbaAryRebase1Var
__vbaAryLock
__vbaAryCopy
__vbaCyForNext
DirectInputCreateEx
DirectInputCreateW
DirectInputCreateA
Btgobb
Cthzj
Imicimvvme
Nmyc
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ