Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
Static task
static1
Behavioral task
behavioral1
Sample
db4d38fd71c38986091bb9d344456009_JaffaCakes118.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
db4d38fd71c38986091bb9d344456009_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Target
db4d38fd71c38986091bb9d344456009_JaffaCakes118
Size
1017KB
MD5
db4d38fd71c38986091bb9d344456009
SHA1
7485d0a58c0ad9f7ddb9062f017d8781a0ef944e
SHA256
2f6581919ee43687544bfb78fee15ff2e57be30fe59aac23a3651b5fb54b1294
SHA512
a698c9f19d7b7079ac0bd30deeac8e73568b814c4c882d271addc6075ed955da84e0c683bc72c44a9d1766b4070957928a5a1bd1e2ffdda954d1daa24d10b276
SSDEEP
12288:JUWRVijOcJ0nETSDfTsjMQLz3n1vKS05DfWd3nLdgsr+ucUTtzEeXsbtMOPqBbzR:W3OCg4fbn1CSuW9JVEeXsbtGz+rLJc
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
e:\Hummer\HummerMultiStr1.5Proj_3\Basic_hummer_VOB\Hummer1.0\Output\Bin\MainFrame.pdb
??1CCmdCodecBase@@UAE@XZ
?GetLCIDAsString@NLS@@YA?AVCTXStringW@@XZ
??1CTXHttpDownloadSink@@UAE@XZ
??1CTXHttpDownload@@UAE@XZ
?Download@CTXHttpDownload@@QAEHPB_WPAU_SYSTEMTIME@@@Z
?AddInfo@CTXHttpDownload@@QAEHABVCTXStringW@@K@Z
?AddInfo@CTXHttpDownload@@QAEHABVCTXStringW@@PBEK@Z
?SetUseUtf8Head@CTXHttpDownload@@QAEXH@Z
?SetUIInterface@CTXHttpDownload@@QAEXPAVCTXHttpDownloadSink@@@Z
??0CTXHttpDownload@@QAE@XZ
??0CTXHttpDownloadSink@@IAE@XZ
?OnConnecting@CTXHttpDownloadSink@@UAEXPAVCTXHttpDownload@@PB_W@Z
?OnConnected@CTXHttpDownloadSink@@UAEXPAVCTXHttpDownload@@@Z
?OnDownloadStart@CTXHttpDownloadSink@@UAEXPAVCTXHttpDownload@@KK@Z
?DecodeBuffer@CCmdCodecBase@@UAGJPAUITXBuffer@@PAPAUITXData@@PAU3@@Z
?OnRedirected@CTXHttpDownloadSink@@UAEXPAVCTXHttpDownload@@PB_W@Z
?OnError@CTXHttpDownloadSink@@UAEXPAVCTXHttpDownload@@K@Z
?MoveDownloadFile@CTXHttpDownload@@QAEHPB_WH@Z
?QueryInfo@CTXHttpDownload@@QAEHABVCTXStringW@@AAV2@H@Z
?QueryInfo@CTXHttpDownload@@QAEHABVCTXStringW@@AAK@Z
?CodeNumber@CCmdCodecBase@@IAEXPB_WW4TX_DATA_TYPE@@@Z
?DecodeEndArray@CCmdCodecBase@@IAEXXZ
?DecodeArrayTXDataNumber@CCmdCodecBase@@IAEXPB_WW4TX_DATA_TYPE@@@Z
?DecodeArrayLenHead@CCmdCodecBase@@IAEXPB_WW4CMDFIELDTYPE@@H@Z
?GetDecodeNumberUnsigned@CCmdCodecBase@@IAEKPB_W@Z
?DecodeNumber@CCmdCodecBase@@IAEXPB_WW4TX_DATA_TYPE@@@Z
?Random@Sys@Util@@YAHXZ
?GetCodePage@NLS@@YAHAAI@Z
?ConvertToPureFile@FS@@YA?AVCTXStringW@@PB_W@Z
?CodeTXData@CCmdCodecBase@@UAGJPAUITXData@@PAPAUITXBuffer@@@Z
?Release@CCmdCodecBase@@MAGKXZ
?AddRef@CCmdCodecBase@@MAGKXZ
?QueryInterface@CCmdCodecBase@@MAGJABU_GUID@@PAPAX@Z
??0CCmdCodecBase@@QAE@XZ
?GuidToString@Com@Util@@YAJABU_GUID@@PAPA_WH@Z
?Encode16@Encode@Util@@YA?AVCTXStringW@@ABVCTXBuffer@@@Z
?IsFileExist@FS@@YAHPB_W@Z
?IsFileSystemExist@FS@@YAHPB_W@Z
?IsDirectoryExist@FS@@YAHPB_W@Z
?CreateDirectoryW@FS@@YAHPB_W@Z
?DeleteFileW@FS@@YAHPB_W@Z
?CreateFileW@FS@@YAHPB_WKPAPAUITXFile@@@Z
ord25
ord26
?EraseIdleCallback@TXTimer@@YAHPAUITXIdleCallback@@I@Z
?GetLoginServerTime@Time@Util@@YAKXZ
?CreateTXArray@Data@Util@@YAHPAPAUITXArray@@@Z
?GetRegulatedTime@Time@Util@@YA_NAA_J@Z
?SetIdleCallback@TXTimer@@YAHPAUITXIdleCallback@@I@Z
?GetLCID@NLS@@YAKXZ
?EraseTimerCallback@TXTimer@@YAHPAUITXTimerCallback@@I@Z
?SetInterval@TXTimer@@YAHIPAUITXTimerCallback@@I@Z
?GetIEProxySetting@Network@Util@@YAHPAUITXData@@AAE@Z
?CreateUDPForProxyValidate@Network@Util@@YAHW4TX_PROXY_TYPE@@PAPAUITXUDP@@@Z
?CreateConnectTCPForProxyValidate@Network@Util@@YAHW4TX_PROXY_TYPE@@PAPAUITXConnectTCP@@@Z
?EraseAsyncCallback@TXTimer@@YAHPAUITXAsyncCallback@@I@Z
?GetMemoryUsage@Sys@Util@@YAXAAK0@Z
?Format@CFmtString@@QAEPB_WPB_W@Z
?SBCToDBC@Convert@Util@@YA_NAAVCTXStringW@@@Z
?GetTXDataStr@Data@Util@@YAHPAUITXDataRead@@PB_WAAVCTXStringW@@@Z
ord34
?GetTXDataBuf@Data@Util@@YAHPAUITXDataRead@@PB_WAAVCTXBuffer@@@Z
?SetAsyncCallback@TXTimer@@YAHPAUITXAsyncCallback@@I@Z
?IsAnotherSameProcessRunning@Sys@Util@@YAHXZ
?CreateTXData@Data@Util@@YAHPAPAUITXData@@@Z
?LoadStringW@TXStringBundle@@YAPB_WPB_W@Z
ord37
?GetPlatformCore@Core@Util@@YAHPAPAUITXCore@@@Z
?OnProgress@CTXHttpDownloadSink@@UAEXPAVCTXHttpDownload@@KK@Z
?CreateTXBuffer@Data@Util@@YAHPAPAUITXBuffer@@@Z
?SetColorizeInfo@GF@Util@@YAXNNN@Z
?RawCreateGFElementByMetadata@GF@Util@@YAJPAUITXData@@PAPAUIGFElement@@PAU4@PAUITXCore@@@Z
?ClearMousePointer@GF@Util@@YAJPAUIGFFrame@@@Z
?GetAnchorResult@CGFAnchor@@QAE?AVCRect@@PAVVCalcSizeSupporter@@@Z
?AddAnchor@CGFAnchor@@QAEXEEVCRect@@VCPoint@@@Z
??0CGFAnchor@@QAE@XZ
?TransMd2GFElement@Metadata@Util@@YAJPAUITXData@@PAPAUIGFElement@@PAUIGFEnvironment@@PAUITXCore@@@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAH@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAK@Z
?FreeData@Metadata@Util@@YAJAAPA_W@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAPA_W@Z
?FramePoint2WindowPoint@GF@Util@@YAXPAUIGFFrame@@AAUtagPOINT@@@Z
?IsValidGFElement@GF@Util@@YAHPAUIGFElement@@@Z
?RawInitGFElementByXtml@GF@Util@@YAJPA_WPAUIGFElement@@1PAUITXCore@@@Z
?GetColorizeInfo@GF@Util@@YAXAAN00@Z
?AdviseWebBrowser@IEEvent@Util@@YAHPAUIWebBrowser2@@PAUITXWebBrowserEvents@@PAPAUIUnknown@@AAK@Z
?GetDCFromDrawDevice@GF@Util@@YAJPAUIGFDrawDevice@@PAPAUHDC__@@PAUtagRECT@@@Z
?Get@Metadata@Util@@YAJPAUITXData@@PA_WPAE@Z
?RawCreateGFElementByXtml@GF@Util@@YAJPA_WPAPAUIGFElement@@PAU3@PAUITXCore@@@Z
?GetCombineName@Contact@Util@@YA?AVCTXStringW@@K@Z
?IsStatusLegal@Misc@Util@@YAHG@Z
?GetDefaultHeadFile@Misc@Util@@YA?AVCTXStringW@@HW4DefaultHeadType@12@@Z
?GetHeadFile@Misc@Util@@YA?AVCTXStringW@@G@Z
?IsValidAccount@Misc@Util@@YAHVCTXStringW@@@Z
?TransformMsg@Msg@Util@@YAXPAUITXMsgPack@@PAPAU3@K@Z
?CreateMsgPack@Msg@Util@@YAHPAPAUITXMsgPack@@@Z
?GetAllGroupUnifyMsgType@Group@Util@@YAEXZ
?GetGroupSelfMsgType@Group@Util@@YAEK@Z
?GetStatus@Contact@Util@@YAGK@Z
?GetStatus@Contact@Util@@YAXKAAGAAVCTXStringW@@@Z
?IsOnline@Contact@Util@@YAHK@Z
?IsFlagValid@Contact@Util@@YAHKK@Z
?GetSelfUin@Contact@Util@@YAKXZ
?GetAccountType@Account@Util@@YAEK@Z
?SetBit@LoginDataReport@Misc@Util@@YAXEH@Z
?OpenUrlWithDefault@URL@Util@@YAXABVCTXStringW@@W4URLMODIFYLEVEL@12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?GetVASTagFile@Misc@Util@@YA?AVCTXStringW@@HH@Z
?GetPublicGender@Contact@Util@@YAEK@Z
?UpdateMsgStorageInfo@Msg@Util@@YAHPB_W000@Z
?GetRTypeByUin@Contact@Util@@YAKK@Z
?GetPublicName@Contact@Util@@YA?AVCTXStringW@@K@Z
?GetAccountName@Account@Util@@YA?AVCTXStringW@@K@Z
?Get32ByteValueAddedSign@Misc@Util@@YA?AVCTXStringW@@XZ
?GetPublicEmail@Contact@Util@@YA?AVCTXStringW@@K@Z
?IsInBlackList@Contact@Util@@YAHK@Z
?GetDiscussHeadFile@Group@Util@@YA?AVCTXStringW@@XZ
?SetBit@OnlineStatusDataReport@Misc@Util@@YAXEH@Z
?SetDataReportBit@DataReport@Util@@YAJKPB_WE@Z
?SetDataDWord@DataReport@Util@@YAJKPB_WK@Z
?IncHelper@DataReport@Util@@YAJKPB_WK@Z
?GetDiscussName@Group@Util@@YA?AVCTXStringW@@K@Z
?GetDiscussMsgType@Group@Util@@YAKK@Z
?CreateDiscuss@Group@Util@@YAJPAUITXData@@PAUITXCallback@@AAVCTXStringW@@K@Z
?GetGroupName@Group@Util@@YA?AVCTXStringW@@K@Z
?GetYellowBarIconFile@Misc@Util@@YA?AVCTXStringW@@G@Z
?CreateDiscussForSelect@Group@Util@@YAJPAUITXArray@@PAUITXCallback@@@Z
?GetMinorVer@Version@@YAEXZ
?GetMajorVer@Version@@YAEXZ
?GetVersionExW@Version@@YAXAAUtagVersionInfo@1@@Z
?IsEmail@Misc@Util@@YAHAAVCTXStringW@@@Z
?MessageBoxW@Misc@Util@@YAHPAUIGFFrame@@VCTXStringW@@1H@Z
?SetBkgIndex@Misc@Util@@YAHH@Z
?OpenModeView@Misc@Util@@YAXHH@Z
?GetStatusPngFileWithLogo@Misc@Util@@YA?AVCTXStringW@@GH@Z
?GetStatusShowText@Misc@Util@@YA?AVCTXStringW@@GV3@@Z
?GetStatusPngFile@Misc@Util@@YA?AVCTXStringW@@GH@Z
?JumpGroupUrl@Misc@Util@@YAXKW4eGroupURLType@@@Z
?AddSubStatus@Status@Util@@YAHGVCTXStringW@@@Z
?RemoveStatus@Status@Util@@YAXGVCTXStringW@@@Z
?ReportStausAddEditModifyCount@Status@Util@@YAHG@Z
?OpenUrlWithWnd@URL@Util@@YAPAUHWND__@@ABVCTXStringW@@W4URLMODIFYLEVEL@12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HHPB_WPAPAUIGFStandardWin@@@Z
?OpenContactChatSession@Misc@Util@@YAXKPAUITXData@@@Z
?CreateContactHead@Misc@Util@@YAHPAPAUIContactHead@@@Z
?GetStatusTagPngFile@Misc@Util@@YA?AVCTXStringW@@GH@Z
?QueryMsgChainByMainTypeAndKey@Misc@Util@@YAHPA_W0@Z
?SendQQMail@Misc@Util@@YAXK@Z
?TXLoadReportId@@YAPB_WPB_W@Z
?IsChatSessionOpen@Misc@Util@@YAHKH@Z
?SwitchUser@Misc@Util@@YAXXZ
?QueryUinByAccount@Misc@Util@@YAHVCTXStringW@@PAK@Z
?GetBkgIndex@Misc@Util@@YAHAAH@Z
?GetOpenChatFrameCount@Misc@Util@@YAHXZ
GetSystemTimeAsFileTime
GetCurrentProcessId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapSize
HeapReAlloc
HeapDestroy
GetLocaleInfoA
GetACP
InterlockedExchange
VirtualAlloc
IsProcessorFeaturePresent
LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
GetVersionExA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
SetThreadLocale
GetThreadLocale
RaiseException
GetTickCount
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
GetLastError
lstrlenW
lstrcmpiW
FlushInstructionCache
GetCurrentProcess
QueryPerformanceCounter
GetCurrentThreadId
GetModuleHandleW
GetModuleFileNameW
SetProcessWorkingSetSize
MapViewOfFile
CreateFileMappingW
OpenFileMappingW
EnumResourceNamesW
MultiByteToWideChar
GetProcAddress
Sleep
GetFileAttributesW
CloseHandle
GetFileSize
CreateFileW
lstrcmpW
GetLocalTime
ReadFile
VirtualFree
GetSystemMetrics
CallWindowProcW
EqualRect
UnionRect
InflateRect
SystemParametersInfoW
PtInRect
GetMessagePos
IsZoomed
DefWindowProcW
GetCursorPos
GetKeyState
SetRectEmpty
GetAsyncKeyState
EnumDisplayMonitors
SetWindowLongW
GetWindowLongW
MonitorFromPoint
RegisterWindowMessageW
LoadIconW
SetForegroundWindow
IsWindowVisible
InvalidateRect
CharNextW
DrawAnimatedRects
DrawTextW
GetDC
ReleaseDC
GetFocus
GetForegroundWindow
MapVirtualKeyW
SendInput
keybd_event
GetActiveWindow
ScreenToClient
OffsetRect
SetRect
PostMessageW
GetDesktopWindow
GetKeyboardState
GetWindowPlacement
SetWindowPlacement
SetFocus
SetWindowTextW
CopyRect
IsWindow
SetTimer
UpdateWindow
ClientToScreen
GetClientRect
GetWindowRect
SetWindowPos
MoveWindow
SendMessageW
GetParent
UnregisterClassA
SetBkMode
SelectObject
GetTextExtentPoint32W
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegQueryValueExW
RegCloseKey
SHGetFileInfoW
SHAppBarMessage
CoTaskMemFree
CoCreateInstance
StringFromCLSID
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen
SysFreeString
SysAllocString
SysStringLen
LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
VarBstrCmp
ord18
ord22
ord64
ord23
ord15
ord30
ord31
ord32
ord58
ord61
wnsprintfW
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_except_handler4_common
rand
swscanf
_vsnwprintf_s
wcsrchr
wcsstr
__argc
__wargv
_wcsicmp
_wtoi
vswprintf_s
_vscwprintf
_wcsupr_s
_malloc_crt
iswspace
_purecall
memmove_s
_time64
wcsncpy_s
wcscpy_s
malloc
memcpy_s
memset
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_invalid_parameter_noinfo
memcpy
??_V@YAXPAX@Z
free
__CxxFrameHandler3
_recalloc
_CxxThrowException
??3@YAXPAX@Z
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__clean_type_info_names_internal
wcschr
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ