Component
CreateProcessNotify
BuildADsParentPathFromObjectInfo
DllClientCleanup
cttucnfg
DllClientStartup
FreeADsStr
ChangeSeparator
BuildADsPathFromParent
BuildADsPathFromLDAPPath
BuildADsParentPath
GetLDAPTypeName
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
7640752ea8ab3553d1624f39087de1c1_JaffaCakes118.dll
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
7640752ea8ab3553d1624f39087de1c1_JaffaCakes118.dll
Resource
win10v2004-20241007-en
Target
7640752ea8ab3553d1624f39087de1c1_JaffaCakes118
Size
64KB
MD5
7640752ea8ab3553d1624f39087de1c1
SHA1
960e8e0b37aa20fe717e9566d0e5e84871c061a5
SHA256
5910dbf3e530bf507525a5302ffb38d8fd09b77cb82d7d62db445980e331e9ff
SHA512
f47206de6c53a97e9b8280a037c6167f4f45b24e8a668488559fdcf5ba7e41685487fe8f51b2f66e77ca032e520e60ed383e76ae5def0dc8aebcedb3fc909fe1
SSDEEP
1536:k3tevdLQQxIVUROOmdXnBNWjtDRtUHpEv91Z7UCL5e:OgnI+RmdXnGROA1dd
Checks for missing Authenticode signature.
| resource |
|---|
| 7640752ea8ab3553d1624f39087de1c1_JaffaCakes118 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
WriteProcessMemory
GetComputerNameW
GetModuleFileNameW
SetLastError
GetVolumeInformationA
CreateMutexA
GlobalLock
WaitForMultipleObjects
lstrcpynA
FormatMessageW
GetCurrentProcess
FormatMessageA
IsBadWritePtr
SetFilePointer
InterlockedIncrement
GetTimeZoneInformation
GetProfileStringA
GetProcessHeap
lstrcmpiW
lstrcmpW
GetCurrentThreadId
GlobalUnlock
lstrlenW
CloseHandle
lstrcmpiA
GetFileType
GetCommandLineW
GetModuleHandleA
HeapAlloc
SetUnhandledExceptionFilter
UnmapViewOfFile
GetFileSizeEx
ResetEvent
GetACP
CreateFileW
RemoveDirectoryW
TerminateProcess
CreateFileMappingW
GetDriveTypeA
QueryPerformanceCounter
SetEndOfFile
MoveFileExW
CloseHandle
lstrcpynW
GetModuleHandleA
VirtualQueryEx
SetThreadPriority
CreateDirectoryW
MapViewOfFileEx
_lopen
_Stod
_Getctype
_Dnorm
_Sinh
_Strxfrm
_Wcrtomb
_Strcoll
_Inf
_Cosh
_Getcvt
_FDscale
_Tolower
_Snan
_FInf
_LRteps
SetFocus
DrawMenuBar
GetClientRect
GetWindow
GetMenuStringW
IsWindow
IsDlgButtonChecked
ReleaseDC
GetWindowTextLengthA
DefFrameProcW
MessageBeep
GetSysColorBrush
ShowScrollBar
SetWindowTextA
CharUpperBuffA
CharUpperA
CreateCaret
SetDlgItemTextW
GetWindowTextW
GetClassInfoW
KillTimer
LoadImageA
CallNextHookEx
SetTimer
ModifyMenuA
PostMessageA
OffsetRect
SetCursorPos
SetMenu
GetDlgItemInt
GetMenuItemCount
WaitMessage
OemToCharA
DrawIcon
SetClassLongA
MapWindowPoints
GetAsyncKeyState
CallWindowProcW
GetFocus
LoadMenuA
IsDialogMessageA
EndPaint
GetWindowTextLengthW
SetCapture
InvalidateRect
IntersectRect
TrackPopupMenu
GetTextColor
ExtTextOutW
DeleteDC
CreateSolidBrush
SetBkMode
DeleteObject
GetCharABCWidthsFloatW
ExtCreatePen
CreateDIBSection
StartDocA
EndPage
Rectangle
TextOutA
RegOpenKeyA
RegDeleteKeyW
RegQueryValueA
RegOpenKeyExA
RegCreateKeyW
GetUserNameW
ExtractAssociatedIconA
ImageList_Draw
CreateToolbarEx
Component
CreateProcessNotify
BuildADsParentPathFromObjectInfo
DllClientCleanup
cttucnfg
DllClientStartup
FreeADsStr
ChangeSeparator
BuildADsPathFromParent
BuildADsPathFromLDAPPath
BuildADsParentPath
GetLDAPTypeName
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ