Static task
static1
Behavioral task
behavioral1
Sample
039ec15e1b605c6f122b4c058648f1a8_JaffaCakes118.exe
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral2
Sample
039ec15e1b605c6f122b4c058648f1a8_JaffaCakes118.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
General
-
Target
039ec15e1b605c6f122b4c058648f1a8_JaffaCakes118
-
Size
306KB
-
MD5
039ec15e1b605c6f122b4c058648f1a8
-
SHA1
969690b1ed574447f110dadff87ed0283c61d7fc
-
SHA256
e03548b38982500ff4216b3c1dc1c077e99314492a322e1194b8e7ad2a96012e
-
SHA512
2c0c8ffb507e278b60c9e037bf39fe9efd09a009c00147e6681dd807e9c0cbbca880231d88058b4630e899aa7568c3e05b8978482e77baaa7b9c988a961a989f
-
SSDEEP
6144:CADqpDli9kWVL8G0BB3FZXQ7CvSKeW5FGMfk40s4mOUKuS4+:CjDlqllqB3FZ7Xe4xl0s4SS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 039ec15e1b605c6f122b4c058648f1a8_JaffaCakes118
Files
-
039ec15e1b605c6f122b4c058648f1a8_JaffaCakes118.exe windows:4 windows x86 arch:x86
30d3928e009e18b4cd372f5c9a491af5
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
FreeLibrary
GetExitCodeProcess
SetCurrentDirectoryW
EnumResourceNamesA
SetPriorityClass
GetDriveTypeW
lstrcat
OutputDebugStringW
SetLocaleInfoW
RtlFillMemory
CreateMailslotA
lstrcmpiA
WriteConsoleInputA
FindFirstFileExW
CreatePipe
GetNumberFormatW
DeleteAtom
GetQueuedCompletionStatus
GetComputerNameW
GetShortPathNameW
GetFullPathNameW
Heap32First
ReadFileScatter
DeleteFiber
GetConsoleCursorInfo
AllocConsole
GetLastError
WritePrivateProfileSectionA
LocalUnlock
FindFirstFileA
GetEnvironmentStringsA
SetFileTime
LoadLibraryExW
GetAtomNameA
OpenEventW
SetVolumeLabelW
WriteProfileSectionA
LoadModule
GlobalLock
FindResourceA
FindResourceW
WaitNamedPipeA
GetProcessVersion
GetThreadPriorityBoost
VirtualQueryEx
GetProcessTimes
SetComputerNameW
ReadFile
EnumResourceLanguagesW
lstrcmpW
ReleaseMutex
EnumDateFormatsExA
CompareStringA
GetProfileStringW
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetWriteWatch
GetTimeFormatW
RtlZeroMemory
SetVolumeLabelA
GlobalAlloc
GetConsoleOutputCP
GetPrivateProfileIntW
GetDiskFreeSpaceExA
MoveFileExA
DeviceIoControl
EnumSystemLocalesW
EnumTimeFormatsA
ExitThread
GetLogicalDrives
RemoveDirectoryA
GetCompressedFileSizeW
GetThreadPriority
CreateProcessW
GetProfileSectionA
SetSystemTimeAdjustment
ReadConsoleOutputW
LocalAlloc
GetProcessHeap
GetSystemDefaultLangID
LocalSize
GetLocaleInfoA
GetTempPathA
lstrcpyW
lstrcmpA
SuspendThread
DebugActiveProcess
GetPrivateProfileStructA
FindNextFileA
WriteConsoleOutputAttribute
TlsFree
ReadConsoleOutputCharacterA
GetComputerNameA
GetModuleFileNameW
LoadLibraryW
InterlockedExchangeAdd
OpenFileMappingW
GetCurrentDirectoryA
FindFirstFileW
GetLargestConsoleWindowSize
SetConsoleCursorPosition
LocalReAlloc
GetNamedPipeInfo
GetDriveTypeA
LocalShrink
GetConsoleMode
DefineDosDeviceW
SetConsoleScreenBufferSize
ReadConsoleInputA
WriteConsoleA
PulseEvent
GlobalHandle
FoldStringW
GetEnvironmentVariableA
ResetEvent
DebugBreak
CreateEventA
GetFileAttributesExW
GetProfileStringA
ResumeThread
GetNumberOfConsoleMouseButtons
lstrlenA
SetEnvironmentVariableA
GetVersion
PeekConsoleInputW
FindFirstChangeNotificationW
HeapLock
lstrcpynA
GetACP
lstrlenW
GetLocaleInfoW
EscapeCommFunction
GetDiskFreeSpaceA
PeekConsoleInputA
GetThreadLocale
EraseTape
EnumTimeFormatsW
GetTimeFormatA
Heap32Next
GetSystemInfo
SleepEx
CopyFileExA
WriteProfileSectionW
GetProcAddress
TlsGetValue
UnlockFile
GlobalReAlloc
WriteConsoleInputW
GetCommandLineA
GetTempFileNameW
CloseHandle
Thread32Next
SignalObjectAndWait
WaitNamedPipeW
GlobalWire
WriteProfileStringW
FormatMessageW
CreateTapePartition
GetUserDefaultLCID
GetMailslotInfo
GetTempFileNameA
ConnectNamedPipe
ReadConsoleA
SetConsoleMode
WriteConsoleOutputCharacterW
GetVersionExW
EnumDateFormatsA
Module32Next
BeginUpdateResourceA
LockFileEx
GetNamedPipeHandleStateW
ReleaseSemaphore
GetPrivateProfileStructW
OpenMutexW
CreateFileW
GlobalUnWire
CreateDirectoryW
SetConsoleOutputCP
SetLastError
SetTimeZoneInformation
WriteFileGather
OpenEventA
lstrcmp
GetProcessShutdownParameters
GetFullPathNameA
TransmitCommChar
InterlockedCompareExchange
GetNumberOfConsoleInputEvents
GetPrivateProfileSectionNamesA
FreeEnvironmentStringsA
FileTimeToLocalFileTime
EnumSystemCodePagesW
GetDateFormatA
GetEnvironmentVariableW
GlobalCompact
GlobalMemoryStatus
GetAtomNameW
SetThreadIdealProcessor
GetCurrencyFormatA
HeapWalk
GetCalendarInfoA
ReadFileEx
CreateProcessA
FormatMessageA
GetCommandLineW
GetPrivateProfileSectionW
FillConsoleOutputCharacterW
LocalCompact
LocalFree
IsDebuggerPresent
DisconnectNamedPipe
CreateMailslotW
UnhandledExceptionFilter
Sleep
SetThreadContext
MulDiv
OutputDebugStringA
GetEnvironmentStrings
ExpandEnvironmentStringsW
CreateDirectoryA
BeginUpdateResourceW
ConvertDefaultLocale
GetProcessHeaps
OpenFileMappingA
EnumDateFormatsExW
FoldStringA
GlobalGetAtomNameW
GetLongPathNameA
EnumResourceNamesW
GlobalAddAtomA
InterlockedIncrement
GlobalAddAtomW
GetThreadTimes
SetFileAttributesA
GetFileAttributesA
AddAtomW
LockFile
GetHandleInformation
OpenSemaphoreA
GetSystemTime
GetFileInformationByHandle
OpenProcess
SetComputerNameA
WritePrivateProfileStringW
GetCurrentThread
GetFileSize
SystemTimeToTzSpecificLocalTime
GetConsoleTitleW
GlobalDeleteAtom
AddAtomA
LocalHandle
GetProcessPriorityBoost
GetFileType
GlobalFlags
Heap32ListNext
GetCalendarInfoW
GetDiskFreeSpaceW
Toolhelp32ReadProcessMemory
FindFirstChangeNotificationA
WideCharToMultiByte
EnumCalendarInfoA
EnterCriticalSection
WritePrivateProfileStructA
ReadConsoleInputW
SetFilePointer
GetCurrencyFormatW
GetLongPathNameW
SetThreadLocale
FindClose
CreateThread
VirtualUnlock
VirtualAllocEx
VirtualFreeEx
CreateWaitableTimerA
lstrcatA
FindCloseChangeNotification
GlobalUnlock
GetSystemTimeAdjustment
SetHandleCount
SetSystemTime
lstrcmpi
GetUserDefaultLangID
TransactNamedPipe
FillConsoleOutputCharacterA
GetLogicalDriveStringsA
GetTimeZoneInformation
GetThreadSelectorEntry
DisableThreadLibraryCalls
HeapValidate
ReadConsoleOutputAttribute
FindFirstFileExA
GetDateFormatW
WritePrivateProfileStructW
LockResource
GetPrivateProfileSectionA
EnumResourceTypesA
GetVersionExA
SearchPathA
GetNumberFormatA
lstrcpyA
CopyFileA
GetStringTypeA
WritePrivateProfileStringA
ExpandEnvironmentStringsA
GetStartupInfoW
SetConsoleCtrlHandler
HeapSize
GetVolumeInformationW
FindNextFileW
InitAtomTable
VirtualProtectEx
LocalLock
OpenMutexA
ReadConsoleOutputCharacterW
GlobalUnfix
FileTimeToSystemTime
GetFileAttributesExA
UpdateResourceA
CommConfigDialogA
EnumSystemLocalesA
IsValidLocale
HeapUnlock
CreateMutexA
UnmapViewOfFile
SetCurrentDirectoryA
GetEnvironmentStringsW
WaitForMultipleObjectsEx
SetThreadAffinityMask
ResetWriteWatch
WriteProfileStringA
GetFileTime
MoveFileExW
InitializeCriticalSection
CreateMutexW
FreeConsole
GetSystemDirectoryW
SetConsoleTitleW
VirtualLock
GetPrivateProfileSectionNamesW
MapViewOfFile
FlushInstructionCache
GetPrivateProfileStringW
GetPrivateProfileIntA
FindAtomA
CreateFileMappingW
SetEvent
EnumCalendarInfoExA
HeapDestroy
SetConsoleCP
WaitForSingleObject
SetThreadPriorityBoost
GetConsoleCP
OpenSemaphoreW
FlushViewOfFile
CreateConsoleScreenBuffer
VirtualFree
EnumResourceLanguagesA
GetConsoleTitleA
OpenWaitableTimerA
Process32Next
CreateDirectoryExW
FreeLibraryAndExitThread
GetSystemPowerStatus
GetStdHandle
MoveFileA
CreateNamedPipeA
SetThreadPriority
TerminateThread
RtlMoveMemory
lstrlen
DeleteFileW
CreateDirectoryExA
ContinueDebugEvent
TlsSetValue
SystemTimeToFileTime
SetCriticalSectionSpinCount
CreateFileA
lstrcpynW
TryEnterCriticalSection
DeleteFileA
GetTempPathW
GetLogicalDriveStringsW
SetConsoleTextAttribute
WaitForDebugEvent
GlobalFix
GetFileAttributesW
CreateToolhelp32Snapshot
GetStartupInfoA
WaitForMultipleObjects
HeapCompact
CreateFileMappingA
GetWindowsDirectoryA
WriteConsoleW
WriteProcessMemory
WriteFile
FileTimeToDosDateTime
DefineDosDeviceA
UnlockFileEx
InterlockedDecrement
ReadProcessMemory
GetModuleHandleW
GlobalSize
WaitCommEvent
RemoveDirectoryW
CreateNamedPipeW
WaitForSingleObjectEx
FlushConsoleInputBuffer
ReadConsoleOutputA
LocalFlags
PeekNamedPipe
FindResourceExA
lstrcmpiW
LeaveCriticalSection
CreateSemaphoreA
FlushFileBuffers
FindAtomW
GlobalFree
GetProcessAffinityMask
SetLocalTime
GetVolumeInformationA
IsValidCodePage
GetSystemDefaultLCID
WriteConsoleOutputCharacterA
FindResourceExW
FreeResource
GetStringTypeExA
MoveFileW
DuplicateHandle
CreateWaitableTimerW
GetStringTypeW
GetCurrentDirectoryW
lstrcpyn
SetEndOfFile
GetThreadContext
CreateEventW
GetProfileIntA
WriteFileEx
Heap32ListFirst
MapViewOfFileEx
EnumSystemCodePagesA
GetLocalTime
FindNextChangeNotification
DeleteCriticalSection
EnumCalendarInfoExW
SetWaitableTimer
SetFileAttributesW
GetDiskFreeSpaceExW
CreateRemoteThread
lstrcpy
SetEnvironmentVariableW
HeapCreate
lstrcatW
SetConsoleCursorInfo
GlobalFindAtomW
Thread32First
GetProfileSectionW
SetConsoleActiveScreenBuffer
WinExec
WriteConsoleOutputW
LocalFileTimeToFileTime
SetConsoleWindowInfo
SearchPathW
SetConsoleTitleA
SetThreadExecutionState
EnumCalendarInfoW
GlobalFindAtomA
UpdateResourceW
ReadConsoleW
GetCompressedFileSizeA
WritePrivateProfileSectionW
EnumDateFormatsW
ReadDirectoryChangesW
GetPrivateProfileStringA
Module32First
VirtualProtect
MultiByteToWideChar
TlsAlloc
advapi32
LogonUserW
RegSetValueA
LogonUserA
LookupAccountSidA
CryptSetProviderExA
RegEnumValueA
CryptSetProvParam
CryptSignHashA
LookupSecurityDescriptorPartsW
CryptGetKeyParam
CryptEnumProvidersW
CryptDuplicateKey
RegDeleteValueA
CryptCreateHash
LookupPrivilegeNameA
CryptDestroyKey
RegOpenKeyA
RegFlushKey
ReportEventA
RegQueryInfoKeyA
RegDeleteKeyW
RegSetValueW
RegRestoreKeyW
LookupPrivilegeDisplayNameA
CryptSetProviderA
RegOpenKeyExW
CreateServiceW
RegQueryMultipleValuesW
ReportEventW
CryptSignHashW
CryptGetDefaultProviderA
CryptGetDefaultProviderW
RegQueryValueA
CryptHashSessionKey
InitiateSystemShutdownA
CryptGetProvParam
RegEnumValueW
CryptSetProviderW
RegQueryInfoKeyW
RegCreateKeyW
CryptEnumProvidersA
CryptContextAddRef
GetUserNameA
RegSaveKeyA
RegCloseKey
LookupAccountSidW
CryptSetKeyParam
GetUserNameW
CryptEncrypt
LookupAccountNameW
CryptEnumProviderTypesW
CryptHashData
RegLoadKeyW
RegQueryValueExA
RegSetKeySecurity
StartServiceA
CryptAcquireContextW
CryptDecrypt
RegCreateKeyExW
RegEnumKeyExW
LookupPrivilegeValueW
AbortSystemShutdownW
RegDeleteValueW
RegReplaceKeyW
CryptAcquireContextA
RegOpenKeyExA
RegReplaceKeyA
CryptGenRandom
CryptVerifySignatureA
RegOpenKeyW
CryptGenKey
RegSaveKeyW
CryptDestroyHash
LookupPrivilegeNameW
RegEnumKeyExA
StartServiceW
RegCreateKeyA
LookupPrivilegeValueA
RegDeleteKeyA
CryptExportKey
RegConnectRegistryA
CryptEnumProviderTypesA
RevertToSelf
RegEnumKeyA
CryptGetHashParam
RegQueryValueW
gdi32
PolyPolyline
GetICMProfileA
StretchBlt
GdiPlayScript
GdiGetBatchLimit
SetRectRgn
PolylineTo
UpdateColors
CloseEnhMetaFile
GetBitmapDimensionEx
AnimatePalette
SetICMProfileW
EndPage
SetMagicColors
PaintRgn
RealizePalette
ColorCorrectPalette
SetTextAlign
BeginPath
RemoveFontResourceA
UnrealizeObject
SetPixelFormat
AddFontResourceW
CreateCompatibleDC
GetAspectRatioFilterEx
SetBitmapDimensionEx
GetLayout
PolyBezierTo
GetRegionData
SetMapperFlags
GetObjectA
GetMetaFileW
PathToRegion
GetClipBox
GetCharWidth32A
EnumFontsA
GetClipRgn
GetNearestPaletteIndex
ColorMatchToTarget
GetMiterLimit
GetEnhMetaFileHeader
CombineTransform
EnumMetaFile
CreateSolidBrush
GetGlyphOutline
UpdateICMRegKeyW
CreateEnhMetaFileW
PlayEnhMetaFile
SetWinMetaFileBits
SelectObject
SetBkMode
SetPixelV
CreateDiscardableBitmap
GetTextCharacterExtra
DeleteObject
CreateEllipticRgn
GetGlyphOutlineA
PolyTextOutW
Ellipse
SetWindowOrgEx
GetWorldTransform
CancelDC
CreateRoundRectRgn
AbortDoc
GetCharWidth32W
SetMetaRgn
GetTextExtentPoint32A
SetDIBits
OffsetClipRgn
CreateDIBPatternBrush
GetPolyFillMode
CreateColorSpaceW
PolyTextOutA
CreateScalableFontResourceA
GetDeviceCaps
CreateRectRgnIndirect
SetDeviceGammaRamp
CreateFontA
EnumEnhMetaFile
SetTextJustification
GetTextColor
GetBkMode
CreateDIBSection
GetTextExtentExPointA
GetROP2
SetDIBColorTable
FlattenPath
Pie
GetCurrentPositionEx
CreateColorSpaceA
GetWinMetaFileBits
EndDoc
GetEnhMetaFileDescriptionW
StartPage
ChoosePixelFormat
GetTextFaceA
GetKerningPairs
Sections
.text Size: 157KB - Virtual size: 157KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 126KB - Virtual size: 126KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ