Oxuwiyune
AddLohbplyo
AddJpsumeihhrm
Ltynuamlue
ReadWgyrmmy
Swythdudc
Static task
static1
Behavioral task
behavioral1
Sample
06d899e2525f0264dd640e7acd192bea_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
06d899e2525f0264dd640e7acd192bea_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
06d899e2525f0264dd640e7acd192bea_JaffaCakes118
Size
145KB
MD5
06d899e2525f0264dd640e7acd192bea
SHA1
4f8c2ebf19a1291a67380e202c7849266d3f2a5a
SHA256
6c2c8950ae7513ea3bf91342b5ded8d9aed5a292c4bb6f8ffb35dfebc9b78cb7
SHA512
8763c578370f1cad124e9a49cb6d107cc24963bfca258192d83a32a57948acb07f23281267b21d27e5c45f34aa4dacb4f2bcbe6621496fc3606d46f0911c51fb
SSDEEP
3072:l4BkxNa5Cl2V+M2Oa+vLM3ynTERkQzC93EvJ9HACb7d6d:2yvaVu+68TERhu+RxLPd6d
Checks for missing Authenticode signature.
resource |
---|
06d899e2525f0264dd640e7acd192bea_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetModuleHandleA
MoveFileWithProgressA
GetCommandLineA
GetStartupInfoA
HeapDestroy
ExitProcess
VirtualAlloc
SetConsoleCursorPosition
SetThreadPriority
TerminateJobObject
Module32Next
RpcStringBindingComposeA
RpcBindingToStringBindingA
RpcStringFreeA
DsGetDcNextA
DsGetDcNameA
CoTaskMemFree
StringFromCLSID
ProgIDFromCLSID
CoGetMalloc
Oxuwiyune
AddLohbplyo
AddJpsumeihhrm
Ltynuamlue
ReadWgyrmmy
Swythdudc
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ