Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0.dll
Resource
win10v2004-20241007-en
Target
JaffaCakes118_94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0
Size
607KB
MD5
31fe52f6b9409e7769cf32eac4457fa2
SHA1
b8cac129607a14cbbcb74e5c94a05521e6ae5652
SHA256
94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0
SHA512
60cc50f269374546387f6d275b37aa95253c5cb9a9c9e627d7cd91d4961b2c3c5ec26256548611a9756f39d5fff0207d5d3b824b2203feef85e8cd86898d8945
SSDEEP
12288:FTsor70Aeojgc4+o07OCi6HY7FpW0zm0pF:FTXjeojgc4+lDZY5pF
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
GetThreadUILanguage
AreFileApisANSI
GetThreadErrorMode
GetCurrentProcessorNumber
GetCommandLineW
GetTickCount
IsSystemResumeAutomatic
IsDebuggerPresent
GetACP
SwitchToThread
GetLastError
TlsAlloc
GetCommandLineA
UnregisterApplicationRestart
FlushProcessWriteBuffers
GetCurrentThreadId
GetSystemDefaultUILanguage
RaiseException
InitializeCriticalSectionEx
DeleteCriticalSection
DecodePointer
MultiByteToWideChar
LoadResource
SizeofResource
FindResourceW
GetModuleHandleW
GetProcAddress
LoadLibraryExW
GetEnvironmentStringsW
lstrcmpiW
FreeLibrary
WriteConsoleW
CreateFileW
ReadConsoleW
SetStdHandle
FreeEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetFilePointerEx
GetFileSizeEx
HeapSize
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetFileType
GetStdHandle
GetProcessHeap
SetFileApisToOEM
CloseHandle
ReadFile
FindClose
GetTickCount64
GetModuleFileNameW
LoadLibraryA
HeapFree
HeapReAlloc
HeapAlloc
GetModuleHandleExW
ExitProcess
InterlockedFlushSList
RtlUnwindEx
RtlPcToFileHeader
OutputDebugStringW
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
TlsFree
TlsSetValue
TlsGetValue
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
WideCharToMultiByte
EncodePointer
SetLastError
IsProcessDPIAware
GetForegroundWindow
CreateMenu
GetMenuCheckMarkDimensions
CloseClipboard
GetCapture
GetKBCodePage
GetMessageTime
AnyPopup
EmptyClipboard
InSendMessage
GetMessageExtraInfo
GetClipboardSequenceNumber
GetFocus
SetCursor
LoadCursorW
CharNextW
GetActiveWindow
GetOpenClipboardWindow
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoFreeUnusedLibraries
CoTaskMemRealloc
VarUI4FromStr
InternetQueryDataAvailable
DllGetClassObject
DllRegisterServer
PluginInit
RunObject
agvyjdzypobnsargs
aqxwaxny
bjjaxqlla
bjyzuibwsuj
blncfpmojeayd
bwdxmcxfixuoc
bytkcfwhdrka
ccoezihsesvpls
cfkyivzitrzhur
cgxnvwjbhftolrrb
cyfsxoi
czzfsddzavhg
djmdnybzmages
dnezrvbbcx
dvoyihxgouyyexs
ecxoasmifw
elviyrknh
emcmormweuraxnaor
flcvfqwdfm
fvixnin
fytvufcjwz
gjdksjieimx
goanyccctibq
gybzdpgguj
hcnlgacvkljuyep
icwxbwznrzj
imrwynoscgwuxshn
jdsttiezudrdg
jemnjfkwaqrita
kdaztrfftbflndyo
kejikerlvemgnvue
knqaweqhmhrsxzk
lczhcemghbs
lipjetq
lveoogolfl
maxkhczficuh
mcwadssxplkxfnnmy
nddkbbduczq
njsnwilgnwovybg
nywktdinixh
nzyvzpv
oksllvcggpd
opfnqowiw
owetsge
pivdfpxswt
pombpqo
pwpguvkpsaycpfy
pzxvycwtttvgvgogc
qdxqnbreztcbgaem
qqswdfrip
rcbusnykquk
rlrrolcxmujj
rqirfekuucg
rwcbluazrf
sfthjfombv
sxstktnrufmqdttlf
tdvkufxakj
tgaysmkxmzkv
trwunokumyjcxkwpu
utkhier
vafsiizop
veydvct
vjlwuhyhgxsgxzr
vkglkjzyyfevjldrj
wwxzyrc
xefdgytmdc
xjxmjnp
xvifgxkvbcfo
xwmyova
yiquybklpy
ykdoausokanhxbqmv
yxardjae
zatwsmd
zfgzcfdjijnedifc
zhuhgtmmkeqnralx
ztzbumjfswzxc
zxjwaycxz
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ