Static task
static1
Behavioral task
behavioral1
Sample
161b5b79df0f4c98998d3e4def81b051_JaffaCakes118.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
161b5b79df0f4c98998d3e4def81b051_JaffaCakes118.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
General
-
Target
161b5b79df0f4c98998d3e4def81b051_JaffaCakes118
-
Size
356KB
-
MD5
161b5b79df0f4c98998d3e4def81b051
-
SHA1
918afa9c13d053b4e7c6cf7c9814f6b744813062
-
SHA256
ea890303b814c629e8bc2c3a7692375d35b50ef829fc2832c945dc60bfd69637
-
SHA512
043b51237541dc6945be7637cc02a7a96993c92ff584f6959d0c2b6a608dcc78e27781f7b153bce4ddcc9a6404aefefa3ea61e0e2879b7421a46cc6e56fb7eb8
-
SSDEEP
6144:VggR9oe7vUIebfF1WubIvNqhRW9Gmm0yLEZ94xbuLnjV:VRR9/e3W0nMm0yLm94Bu
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 161b5b79df0f4c98998d3e4def81b051_JaffaCakes118
Files
-
161b5b79df0f4c98998d3e4def81b051_JaffaCakes118.exe windows:4 windows x86 arch:x86
cf87cd8c5a2eb106c0a4d42d27981af7
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
shell32
SHGetSpecialFolderLocation
DragQueryFileW
ShellExecuteExW
ShellExecuteExA
ord155
SHAppBarMessage
ExtractIconA
CommandLineToArgvW
DragQueryFileA
ShellExecuteW
DragAcceptFiles
SHGetFileInfoA
ShellExecuteA
SHGetPathFromIDListW
ExtractIconExW
SHBrowseForFolderA
DragFinish
SHGetMalloc
SHGetPathFromIDListA
advapi32
RegQueryValueExA
ImpersonateSelf
CloseServiceHandle
RegSetValueA
RegCreateKeyExA
GetAclInformation
DeleteService
RevertToSelf
RegDeleteKeyW
RegSetValueExA
SetServiceStatus
IsValidSecurityDescriptor
StartServiceA
EqualSid
RegCreateKeyExW
RegDeleteValueA
RegQueryValueA
OpenProcessToken
RegDeleteValueW
GetLengthSid
RegSetValueExW
AllocateAndInitializeSid
RegEnumKeyExW
CreateServiceA
QueryServiceStatus
DeregisterEventSource
RegGetKeySecurity
DuplicateToken
RegOpenKeyA
RegOpenKeyExA
InitializeSecurityDescriptor
RegDeleteKeyA
CryptAcquireContextA
SetSecurityDescriptorDacl
OpenSCManagerW
CryptGenKey
RegCloseKey
OpenSCManagerA
RegSetKeySecurity
RegOpenKeyW
RegEnumKeyW
CopySid
CryptExportKey
MapGenericMask
RegOpenKeyExW
RegFlushKey
RegCreateKeyA
AddAce
LookupPrivilegeValueA
ReportEventW
OpenServiceA
SetSecurityDescriptorOwner
RegEnumKeyExA
SetSecurityDescriptorGroup
RegQueryInfoKeyA
FreeSid
GetTokenInformation
ChangeServiceConfigA
ControlService
OpenServiceW
RegEnumKeyA
CryptReleaseContext
RegQueryValueExW
shlwapi
PathFindExtensionA
PathRelativePathToA
PathRenameExtensionA
PathAddBackslashA
PathIsRelativeA
PathRemoveFileSpecA
PathParseIconLocationA
PathMakePrettyA
PathCombineA
UrlUnescapeA
PathRemoveArgsA
PathIsDirectoryA
PathAppendA
PathCanonicalizeA
PathIsUNCA
PathQuoteSpacesA
PathStripToRootA
PathFindFileNameA
PathFileExistsA
PathRemoveExtensionA
gdi32
CreatePen
EndPage
StrokeAndFillPath
TextOutW
GetTextExtentExPointW
Ellipse
GetPaletteEntries
ScaleWindowExtEx
MoveToEx
SetPixel
PolyBezierTo
DeleteObject
Escape
GetROP2
GetAspectRatioFilterEx
CopyMetaFileA
PatBlt
SetTextColor
ArcTo
SelectObject
SetMapMode
StartPage
FillRgn
GetArcDirection
Arc
ExtFloodFill
AngleArc
CreateEllipticRgn
GetNearestPaletteIndex
DeleteDC
EqualRgn
SetPixelV
CreateBitmap
GetBkMode
CreateSolidBrush
CreatePolygonRgn
WidenPath
CreateDIBPatternBrushPt
StretchDIBits
CreateEllipticRgnIndirect
GetGlyphOutlineW
GetObjectW
RectVisible
GetTextMetricsA
EnumMetaFile
GetCharABCWidthsFloatA
PtVisible
GetTextExtentPoint32W
GetPixel
CreateDIBitmap
PolyPolyline
CreateDCA
DrawEscape
CombineRgn
FlattenPath
SetStretchBltMode
GetTextExtentPoint32A
GetColorAdjustment
UnrealizeObject
PtInRegion
PolyBezier
GetDIBits
Polyline
EndPath
GetOutlineTextMetricsA
TextOutA
BitBlt
GdiComment
GetCharABCWidthsA
SetBitmapDimensionEx
SetPolyFillMode
GetCharWidthA
GetMiterLimit
EnumFontFamiliesW
GetFontData
GetCharABCWidthsFloatW
RestoreDC
AnimatePalette
GetKerningPairsA
SetRectRgn
CreatePolyPolygonRgn
ExtCreatePen
CreateHalftonePalette
CreateBrushIndirect
GetTextMetricsW
PlayMetaFileRecord
RealizePalette
GetCurrentPositionEx
BeginPath
SetWindowOrgEx
GetViewportOrgEx
CreateMetaFileA
CopyMetaFileW
GetRgnBox
RoundRect
LPtoDP
OffsetViewportOrgEx
UpdateColors
GetBitmapBits
GetTextExtentPointA
CreateCompatibleBitmap
ScaleViewportExtEx
GetStretchBltMode
CreateRectRgnIndirect
GetDCOrgEx
SetDIBColorTable
CreateRoundRectRgn
CreateCompatibleDC
SetTextCharacterExtra
CreateFontIndirectA
SelectClipRgn
SetViewportExtEx
SetBrushOrgEx
GetTextAlign
SaveDC
GetStockObject
FillPath
SetWindowExtEx
GetBkColor
MaskBlt
FrameRgn
CloseFigure
ExtTextOutA
SetColorAdjustment
GetViewportExtEx
CreateFontIndirectW
GetObjectA
Polygon
GetClipBox
Rectangle
GetMapMode
GetTextFaceA
EnumObjects
GetTextCharsetInfo
LineTo
StartDocW
CreateFontA
SelectClipPath
PlayEnhMetaFile
PaintRgn
CloseMetaFile
AbortPath
EnumFontFamiliesExA
StrokePath
PlgBlt
GetTextColor
StartDocA
GetClipRgn
AbortDoc
CreatePatternBrush
GetPolyFillMode
InvertRgn
ExcludeClipRect
DPtoLP
ExtTextOutW
OffsetWindowOrgEx
SetBkMode
IntersectClipRect
PathToRegion
SetMiterLimit
GetTextFaceW
SetDIBits
GetRegionData
DeleteMetaFile
SetViewportOrgEx
GetDeviceCaps
CreateBitmapIndirect
StretchBlt
GetPath
GetGlyphOutlineA
SetMapperFlags
CreateDiscardableBitmap
SetROP2
EndDoc
SelectPalette
GetWindowExtEx
ResetDCA
CreateICA
GetBoundsRect
ExtCreateRegion
GetBitmapDimensionEx
SetAbortProc
GetBrushOrgEx
GetCharWidthFloatA
SetTextJustification
ExtEscape
SetTextAlign
SetBkColor
SetPaletteEntries
GetCurrentObject
ExtSelectClipRgn
RectInRegion
CreateDIBSection
CreatePalette
GetNearestColor
PolyDraw
CreateRectRgn
kernel32
FormatMessageW
TlsSetValue
FatalAppExitA
FormatMessageA
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
GlobalAlloc
TlsAlloc
CreateThread
lstrlenW
CreateDirectoryW
MapViewOfFile
DeleteFileA
RemoveDirectoryA
SetHandleCount
GetStartupInfoW
GetFileAttributesW
GetDriveTypeA
GetSystemDirectoryA
GetDiskFreeSpaceExA
CompareStringA
_lopen
GetProfileStringA
GetEnvironmentVariableA
LCMapStringW
QueryPerformanceFrequency
GetEnvironmentVariableW
HeapDestroy
WritePrivateProfileStringA
LCMapStringA
GlobalAddAtomW
FreeEnvironmentStringsA
InitializeCriticalSection
GetModuleFileNameA
HeapCreate
GetUserDefaultLCID
GetDateFormatA
SetEvent
GetPrivateProfileIntW
MultiByteToWideChar
GetModuleHandleA
FreeEnvironmentStringsW
LocalFileTimeToFileTime
InterlockedDecrement
GetExitCodeProcess
VirtualAlloc
MoveFileA
SetEnvironmentVariableW
CreateDirectoryA
CreateProcessA
GetConsoleMode
GetThreadPriority
GetLongPathNameA
FindResourceExW
GetProcAddress
GlobalGetAtomNameA
GetLocaleInfoA
GetStringTypeW
SetFileAttributesA
SetFileTime
TlsGetValue
CompareStringW
GetOEMCP
RemoveDirectoryW
GetTickCount
FindNextFileA
GetModuleHandleW
ConvertDefaultLocale
GetWindowsDirectoryA
LeaveCriticalSection
TerminateProcess
GetStdHandle
ExitThread
GetPrivateProfileStringW
HeapReAlloc
GetFileTime
IsDebuggerPresent
LockResource
FlushInstructionCache
GlobalLock
GetTimeFormatA
lstrcmpA
GetDiskFreeSpaceA
FindFirstFileA
IsBadReadPtr
ReleaseMutex
WriteConsoleA
GlobalUnlock
SetFilePointer
OpenMutexA
IsValidLocale
GetProcessHeap
GetProcessVersion
GlobalReAlloc
GetACP
IsBadWritePtr
CreatePipe
lstrcmpiA
GetFullPathNameA
VirtualQuery
GetModuleFileNameW
FindResourceExA
GetCPInfo
_llseek
FindNextFileW
WriteConsoleW
SetThreadPriority
GetVersionExA
CreateFileA
FindResourceA
GetVersionExW
SetErrorMode
GetEnvironmentStringsW
UnlockFile
FileTimeToSystemTime
QueryPerformanceCounter
GetCurrentThreadId
DuplicateHandle
GetLastError
GlobalFree
EnumSystemLocalesA
lstrcpynA
HeapFree
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
FileTimeToLocalFileTime
GetSystemDefaultLangID
SetLastError
GetStringTypeA
GetTempPathA
Sleep
TerminateThread
lstrcpynW
GetConsoleCP
HeapAlloc
GetFileSize
GetStringTypeExA
IsValidCodePage
LoadLibraryA
lstrcpyA
ResumeThread
GlobalAddAtomA
CreateMutexA
MulDiv
FreeLibrary
OutputDebugStringA
LocalFree
SizeofResource
CreateEventA
GetVolumeInformationA
LoadLibraryExA
GetCurrentProcessId
GetPrivateProfileStringA
WaitForMultipleObjects
ReadFile
FindClose
LocalReAlloc
CloseHandle
lstrcmpiW
WritePrivateProfileSectionA
GetFileAttributesExW
GetSystemInfo
WideCharToMultiByte
EnterCriticalSection
GetEnvironmentStrings
InterlockedIncrement
lstrcatA
DeleteCriticalSection
CreateSemaphoreA
UnmapViewOfFile
GetFileType
lstrlenA
GetCommandLineA
RaiseException
WriteFile
LockFile
FindResourceW
TlsFree
SetStdHandle
LoadResource
ExitProcess
GetConsoleOutputCP
WaitForSingleObject
GetLocaleInfoW
SetConsoleCtrlHandler
GetThreadLocale
InterlockedCompareExchange
VirtualFree
HeapSize
CopyFileA
FlushFileBuffers
GlobalHandle
GetCurrentThread
GetTimeZoneInformation
LocalAlloc
UnhandledExceptionFilter
GetStartupInfoA
GetVersion
GetCurrentProcess
InterlockedExchange
IsBadCodePtr
winspool.drv
ClosePrinter
SetPrinterDataW
EnumJobsW
OpenPrinterA
FindNextPrinterChangeNotification
EnumPrintersW
SetJobW
GetPrinterW
EnumPrintersA
FreePrinterNotifyInfo
ord204
EnumPortsW
DeviceCapabilitiesA
FindFirstPrinterChangeNotification
DocumentPropertiesA
user32
GetMenuItemRect
SetForegroundWindow
PeekMessageW
SetParent
RemovePropA
DrawTextA
BeginPaint
LoadBitmapA
UnhookWindowsHookEx
CloseClipboard
InsertMenuW
RegisterClassA
GetWindowTextLengthA
GetCapture
FrameRect
FlashWindow
UnionRect
GetClassLongA
DestroyAcceleratorTable
GetScrollPos
ShowWindow
DrawIconEx
DrawStateW
AppendMenuW
SetWindowContextHelpId
GetMenuItemID
IsIconic
LoadMenuA
FindWindowA
DrawTextExA
GetMenuStringW
PostMessageW
EnableWindow
WinHelpA
DestroyWindow
DrawFocusRect
GetWindowLongW
GetTopWindow
ShowCaret
DrawIcon
LoadImageA
DrawMenuBar
WaitMessage
IsWindowUnicode
GetNextDlgTabItem
IsRectEmpty
ShowScrollBar
GetKeyState
GetSystemMetrics
SetScrollInfo
CreateDialogIndirectParamA
InsertMenuItemA
TabbedTextOutA
RedrawWindow
GetDCEx
LoadImageW
SetWindowsHookExA
TranslateAcceleratorA
CreateMenu
SetDlgItemTextW
ScreenToClient
SetDlgItemTextA
GetMessageTime
InflateRect
GetWindowPlacement
ModifyMenuW
IsZoomed
CharUpperA
OpenClipboard
DispatchMessageW
SetScrollPos
GetWindowLongA
CallWindowProcA
DeleteMenu
KillTimer
CheckMenuItem
GetSystemMenu
UnregisterClassA
LoadStringW
RegisterClassW
ChildWindowFromPointEx
MapDialogRect
SetClassLongW
MapWindowPoints
GetKeyboardLayout
LoadIconA
CheckMenuRadioItem
GetScrollRange
SetWindowsHookExW
LoadIconW
wvsprintfA
CreatePopupMenu
SetActiveWindow
GetClassInfoA
GetMonitorInfoW
WindowFromPoint
DefWindowProcA
CharUpperBuffA
GetForegroundWindow
GetMenuStringA
GetClassNameA
OffsetRect
PostThreadMessageW
GetCursorPos
CreateIconIndirect
GetAsyncKeyState
GetClassLongW
MessageBeep
SendMessageW
GetWindowThreadProcessId
SetFocus
GetMenuItemCount
IsDlgButtonChecked
LoadAcceleratorsA
RegisterClipboardFormatA
EndDeferWindowPos
DispatchMessageA
IsWindowVisible
GetSysColor
DdeUninitialize
LockWindowUpdate
ReleaseDC
GetActiveWindow
EnumChildWindows
SystemParametersInfoA
CharNextW
SetMenu
SystemParametersInfoW
MoveWindow
ShowOwnedPopups
PostMessageA
GetClientRect
GetDC
CopyIcon
SendDlgItemMessageA
GetPropW
RegisterWindowMessageA
RemoveMenu
ReleaseCapture
ValidateRect
wsprintfA
EndPaint
GetMenu
GetLastActivePopup
GrayStringA
GetPropA
CallNextHookEx
LoadCursorW
IntersectRect
InvertRect
GetIconInfo
GetMenuCheckMarkDimensions
RegisterClassExA
DdeDisconnect
GetWindowRect
RemovePropW
GetMenuItemInfoW
ScrollWindow
GetFocus
GetClassNameW
LoadCursorA
SetMenuDefaultItem
SetTimer
DefDlgProcA
EmptyClipboard
ReuseDDElParam
SetWindowTextA
keybd_event
IsWindowEnabled
GetSysColorBrush
CheckRadioButton
CopyRect
InsertMenuA
BeginDeferWindowPos
SetCursor
LoadStringA
SetMenuItemBitmaps
InvalidateRect
wsprintfW
SendMessageA
GetMessagePos
GetNextDlgGroupItem
MessageBoxW
GetMessageA
RegisterHotKey
BringWindowToTop
SetPropA
IsClipboardFormatAvailable
UnpackDDElParam
IsDialogMessageW
ChangeClipboardChain
UpdateWindow
AdjustWindowRectEx
GetSubMenu
DestroyIcon
FindWindowW
GetDesktopWindow
SetWindowLongA
GetDlgCtrlID
SetDlgItemInt
SetScrollRange
CharNextA
GetScrollInfo
PtInRect
GetDlgItemTextA
DdeClientTransaction
DestroyMenu
CreateWindowExA
GetDlgItem
DefWindowProcW
GetMenuState
EqualRect
SetClipboardData
GetDlgItemInt
EndDialog
SetCapture
EnableMenuItem
CheckDlgButton
DrawEdge
PostQuitMessage
SetRect
GetWindowTextA
ShowWindowAsync
GetWindowTextLengthW
IsWindow
AppendMenuA
GetClassInfoW
GetParent
SetWindowLongW
ModifyMenuA
GetWindowDC
CreateWindowExW
IsChild
SetRectEmpty
TranslateAcceleratorW
DestroyCursor
SetWindowPos
PeekMessageA
MessageBoxA
ClientToScreen
ExcludeUpdateRgn
GetUpdateRgn
TranslateMessage
GetWindow
comctl32
ImageList_DrawEx
ImageList_GetImageCount
ImageList_Create
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Read
ImageList_GetIconSize
ImageList_Replace
ImageList_GetBkColor
ord17
ImageList_Destroy
ImageList_SetOverlayImage
ImageList_LoadImageA
ImageList_BeginDrag
ImageList_Remove
ImageList_SetBkColor
ImageList_GetIcon
ImageList_EndDrag
ImageList_ReplaceIcon
ImageList_DragEnter
_TrackMouseEvent
ImageList_Write
InitCommonControlsEx
ImageList_LoadImageW
ImageList_Add
PropertySheetW
PropertySheetA
ImageList_DragShowNolock
CreatePropertySheetPageA
ImageList_DragMove
ImageList_DragLeave
DestroyPropertySheetPage
ImageList_Draw
Sections
.text Size: 88KB - Virtual size: 86KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 92KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 95KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 84KB - Virtual size: 80KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ