Static task
static1
Behavioral task
behavioral1
Sample
18e7505bb1b7df40af7268951c65dce9_JaffaCakes118.exe
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral2
Sample
18e7505bb1b7df40af7268951c65dce9_JaffaCakes118.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
General
-
Target
18e7505bb1b7df40af7268951c65dce9_JaffaCakes118
-
Size
411KB
-
MD5
18e7505bb1b7df40af7268951c65dce9
-
SHA1
5f699c82d6bae54949d95645cd6dd5be133817ee
-
SHA256
25f2dd80fd95f3e96699fec9c64f11d4e5a8aa31e2fa9afb40f162ec160affca
-
SHA512
83b4ac6284717529aef65001d93e27f8ee12ac2a4c09d0d99e9718ff6ca669f19ee3c0868f58e8e3b63e6c58f6d53fb0b539670e6c5c396576f8f48663309e49
-
SSDEEP
12288:+Dzc4v7Z0wV4EvRlg88NpYWfpGaOf+jL4YcGERAEv61PUN:uLV4z5BGaNgYcGzRhU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 18e7505bb1b7df40af7268951c65dce9_JaffaCakes118
Files
-
18e7505bb1b7df40af7268951c65dce9_JaffaCakes118.exe windows:4 windows x86 arch:x86
fbabf8b51c9e6146fa68acd3a90c65f0
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
lstrcmpiA
CreateFileA
CreateEventW
FreeEnvironmentStringsW
WriteFile
EnumTimeFormatsA
FileTimeToSystemTime
RtlFillMemory
LockFileEx
OpenEventW
WaitCommEvent
EnumCalendarInfoW
LocalAlloc
FreeConsole
EnumDateFormatsExW
GetDriveTypeA
SetConsoleActiveScreenBuffer
SetHandleCount
LoadResource
ReadDirectoryChangesW
GetWindowsDirectoryW
GetConsoleTitleA
SearchPathA
GetStdHandle
GetPrivateProfileSectionNamesA
GetFileSize
DeleteAtom
GetFileAttributesW
lstrcmpA
GetTempFileNameA
CommConfigDialogA
GetLocaleInfoW
WaitForSingleObject
CompareFileTime
DefineDosDeviceW
GetPrivateProfileSectionA
FindNextFileA
WriteConsoleInputA
HeapWalk
WriteConsoleOutputW
GetDateFormatA
WideCharToMultiByte
RemoveDirectoryA
TryEnterCriticalSection
ReadConsoleInputA
GetStringTypeExW
GlobalLock
SetWaitableTimer
InitializeCriticalSectionAndSpinCount
FlushViewOfFile
AllocConsole
SetSystemTime
WriteConsoleOutputAttribute
GetWriteWatch
GlobalMemoryStatus
FreeResource
CreateToolhelp32Snapshot
GetModuleFileNameW
CreateDirectoryExA
DisableThreadLibraryCalls
ReleaseMutex
SetSystemTimeAdjustment
FindResourceExA
MapViewOfFile
GetDiskFreeSpaceExA
GlobalUnWire
HeapLock
GetLocalTime
DebugBreak
lstrcmp
LoadLibraryExA
Heap32First
GetTimeFormatA
SetVolumeLabelA
GetEnvironmentVariableW
HeapSize
FillConsoleOutputAttribute
GetUserDefaultLangID
GetConsoleScreenBufferInfo
UnhandledExceptionFilter
WritePrivateProfileStructA
UpdateResourceA
GetVersionExW
ReadConsoleInputW
UnmapViewOfFile
FindAtomA
FindFirstChangeNotificationW
GetConsoleCursorInfo
ResumeThread
OpenFileMappingW
lstrcatA
FormatMessageW
InitializeCriticalSection
GetProcessShutdownParameters
WriteConsoleOutputA
GetLogicalDriveStringsW
GetHandleInformation
Sleep
GetTempPathA
FindClose
MapViewOfFileEx
TlsAlloc
DeviceIoControl
LocalHandle
CreateNamedPipeW
CreateConsoleScreenBuffer
SignalObjectAndWait
OutputDebugStringA
LocalUnlock
GetFileInformationByHandle
OpenWaitableTimerW
GlobalFree
lstrcmpiW
GetConsoleOutputCP
OpenSemaphoreA
RtlMoveMemory
GlobalFindAtomA
OpenEventA
FoldStringA
IsDebuggerPresent
MoveFileExW
CreateFileW
GetSystemPowerStatus
Heap32Next
GetNumberOfConsoleInputEvents
MoveFileExA
SetConsoleTitleA
GetFullPathNameA
CommConfigDialogW
GetLogicalDrives
GetThreadSelectorEntry
SetCurrentDirectoryA
CreateDirectoryW
GetNumberFormatA
SetCriticalSectionSpinCount
GetSystemDirectoryA
EnumDateFormatsW
SetConsoleCursorPosition
WriteProfileStringW
OpenProcess
MultiByteToWideChar
lstrcatW
LoadLibraryW
GetTimeZoneInformation
SetEnvironmentVariableA
GlobalDeleteAtom
SetFilePointer
GetTimeFormatW
LockResource
FindResourceA
GlobalHandle
GetProcessAffinityMask
GetExitCodeProcess
CreateEventA
VirtualUnlock
FindResourceW
GetConsoleMode
CompareStringA
PulseEvent
SuspendThread
SetConsoleCP
ReadConsoleOutputCharacterW
HeapCompact
CreateSemaphoreA
WritePrivateProfileStringA
GetDiskFreeSpaceExW
GetCommandLineA
AddAtomA
GetShortPathNameA
GetCurrencyFormatW
GetPrivateProfileStringW
Module32First
GetNamedPipeHandleStateW
DefineDosDeviceA
GetVolumeInformationA
HeapUnlock
GetEnvironmentStrings
GetCurrentDirectoryW
WaitNamedPipeW
CreatePipe
SetFileTime
ReadConsoleOutputAttribute
GetDiskFreeSpaceA
GetModuleHandleW
SystemTimeToFileTime
SetFileAttributesW
CreateWaitableTimerW
WritePrivateProfileSectionW
VirtualAllocEx
EnumCalendarInfoA
FlushInstructionCache
GlobalFlags
SetThreadPriorityBoost
GlobalUnfix
CreateSemaphoreW
SetThreadContext
LeaveCriticalSection
lstrcpyn
WriteConsoleInputW
GetNumberOfConsoleMouseButtons
GlobalGetAtomNameA
OpenMutexW
ReadConsoleA
lstrcat
EscapeCommFunction
GetLargestConsoleWindowSize
SetThreadPriority
GetProfileSectionA
comdlg32
GetSaveFileNameA
ChooseFontW
user32
EnumDisplayDevicesA
GetUpdateRect
DrawTextExA
TranslateMDISysAccel
SetDlgItemTextW
SetScrollRange
CallNextHookEx
GetCaretBlinkTime
ChangeDisplaySettingsExW
GetMenuContextHelpId
MapVirtualKeyW
GetWindowContextHelpId
BeginPaint
CascadeChildWindows
CopyAcceleratorTableA
GetSystemMenu
UnregisterClassW
SetMenuDefaultItem
LoadBitmapA
LoadAcceleratorsW
BroadcastSystemMessage
BroadcastSystemMessageW
WindowFromDC
InSendMessageEx
GetLastActivePopup
GetNextDlgTabItem
IsCharLowerW
SetDlgItemTextA
LoadBitmapW
GetMenuCheckMarkDimensions
DlgDirSelectComboBoxExA
GetListBoxInfo
DlgDirSelectExW
ShowWindowAsync
RegisterHotKey
GetWindowRect
GetCaretPos
IsIconic
FlashWindow
DefMDIChildProcW
DdeFreeStringHandle
EnumDisplayDevicesW
DdeUninitialize
DdeGetData
wsprintfW
EditWndProc
GetMenuInfo
CopyIcon
GetKeyboardState
CharUpperA
SendMessageTimeoutA
CountClipboardFormats
EnumThreadWindows
GetTabbedTextExtentA
LoadMenuA
ArrangeIconicWindows
CharLowerW
DlgDirListComboBoxA
FindWindowExA
EnumDesktopsW
CharUpperBuffW
EnumDisplaySettingsExW
DdeInitializeW
SetDeskWallpaper
IsRectEmpty
SendMessageW
ImpersonateDdeClientWindow
DdeClientTransaction
DestroyIcon
SendIMEMessageExA
GetKeyNameTextW
PostThreadMessageW
CreateDialogParamA
VkKeyScanExA
SetCapture
DrawIconEx
CreateAcceleratorTableW
DrawTextW
DdeFreeDataHandle
RegisterClassW
DdeConnect
GetWindowModuleFileNameA
CharNextA
MapVirtualKeyA
GetThreadDesktop
SetWindowsHookExA
OpenWindowStationW
InternalGetWindowText
GetClassLongA
SetClassLongW
ReuseDDElParam
UpdateWindow
SetShellWindow
RegisterWindowMessageW
CharNextExA
OpenDesktopA
GetOpenClipboardWindow
GetMonitorInfoW
DdeSetUserHandle
SetCursorPos
DialogBoxParamW
GetDCEx
OpenClipboard
SetPropW
GetWindowLongA
GetAsyncKeyState
GetTopWindow
CharToOemBuffW
DrawEdge
DdeInitializeA
DrawFocusRect
RegisterClipboardFormatA
ChangeDisplaySettingsExA
CheckMenuRadioItem
WINNLSGetIMEHotkey
EnumPropsW
RegisterDeviceNotificationW
DrawStateW
wsprintfA
SetWindowsHookA
CreateWindowExA
ChangeMenuW
VkKeyScanExW
LoadImageA
SetSysColors
SendInput
GetWindowInfo
GetCursor
IsDialogMessageA
BlockInput
DispatchMessageW
DdeQueryStringW
CharPrevExA
WaitMessage
EnumDesktopWindows
RegisterDeviceNotificationA
SetSystemCursor
SetWindowPos
SetDebugErrorLevel
IsDlgButtonChecked
ExitWindowsEx
IntersectRect
DrawFrameControl
GetForegroundWindow
MsgWaitForMultipleObjects
InflateRect
ShowCursor
TrackMouseEvent
EnumWindows
GetNextDlgGroupItem
ToUnicode
SendDlgItemMessageA
IsChild
GetUserObjectInformationA
DialogBoxIndirectParamW
EndDeferWindowPos
CopyRect
CloseClipboard
SetDoubleClickTime
CharLowerA
VkKeyScanW
GetProcessDefaultLayout
LoadMenuIndirectW
RemovePropA
CreateDialogParamW
GetUserObjectSecurity
SubtractRect
GetAltTabInfo
SetWindowContextHelpId
InvalidateRect
ExcludeUpdateRgn
IsCharUpperA
MessageBoxIndirectA
PostThreadMessageA
SendMessageTimeoutW
WinHelpW
RealGetWindowClass
DialogBoxParamA
MessageBoxW
SetCaretPos
BringWindowToTop
LockWindowUpdate
IsCharUpperW
SetTimer
SendIMEMessageExW
GetDC
ShowScrollBar
ReplyMessage
EndPaint
DefFrameProcA
GetScrollPos
TranslateAccelerator
GetTitleBarInfo
GetDialogBaseUnits
SetCursor
gdi32
OffsetClipRgn
SetBitmapDimensionEx
GetRgnBox
LineTo
PlayEnhMetaFile
IntersectClipRect
Chord
CreateDiscardableBitmap
CreateColorSpaceA
ResetDCA
GetTextCharacterExtra
CreateEnhMetaFileA
CreateColorSpaceW
GetDIBColorTable
EnumICMProfilesW
GetWindowExtEx
GetBkMode
SaveDC
GetStretchBltMode
SetBkMode
SetDIBColorTable
PlayEnhMetaFileRecord
LineDDA
CreateEllipticRgnIndirect
DPtoLP
GetMetaFileA
FlattenPath
GetCharABCWidthsFloatW
StretchBlt
SetViewportExtEx
SetFontEnumeration
GetMiterLimit
GetTextFaceW
CloseFigure
CreateSolidBrush
SetPixelV
CloseMetaFile
GetTextExtentPointA
OffsetWindowOrgEx
CreateScalableFontResourceA
EndPage
CreateScalableFontResourceW
shell32
SHFileOperationA
SHFileOperationW
ExtractIconEx
SHAppBarMessage
SHGetPathFromIDListW
ExtractIconW
SHGetSpecialFolderPathA
ShellExecuteEx
DragQueryFileAorW
SHBrowseForFolder
RealShellExecuteExA
DragAcceptFiles
SHGetDesktopFolder
SHGetFileInfoW
ShellAboutW
RealShellExecuteExW
ExtractAssociatedIconA
ShellExecuteExW
SHInvokePrinterCommandA
DragQueryFileA
SHAddToRecentDocs
SHFreeNameMappings
FindExecutableA
SHGetDiskFreeSpaceA
SHGetMalloc
SHFileOperation
DoEnvironmentSubstA
wininet
InternetReadFileExW
ShowClientAuthCerts
DeleteUrlCacheEntry
FtpGetFileSize
InternetSecurityProtocolToStringW
FindCloseUrlCache
IsUrlCacheEntryExpiredW
InternetFindNextFileW
FindFirstUrlCacheEntryA
ShowSecurityInfo
FindNextUrlCacheContainerW
SetUrlCacheEntryInfoW
GopherGetAttributeW
InternetSetDialStateA
GopherFindFirstFileA
InternetFindNextFileA
InternetQueryDataAvailable
HttpAddRequestHeadersA
InternetSetOptionW
InternetCheckConnectionW
FtpCommandW
FreeUrlCacheSpaceW
InternetOpenW
InternetAutodial
SetUrlCacheHeaderData
GetUrlCacheHeaderData
HttpEndRequestW
InternetGetCertByURLA
SetUrlCacheConfigInfoA
FtpGetCurrentDirectoryA
InternetSetCookieA
InternetOpenUrlW
IncrementUrlCacheHeaderData
ShowX509EncodedCertificate
UpdateUrlCacheContentPath
InternetDial
HttpQueryInfoW
InternetSetOptionExA
InternetAlgIdToStringW
RetrieveUrlCacheEntryFileW
InternetUnlockRequestFile
UnlockUrlCacheEntryFileW
InternetCloseHandle
GetUrlCacheConfigInfoA
DeleteUrlCacheGroup
ReadUrlCacheEntryStream
InternetFortezzaCommand
GetUrlCacheGroupAttributeA
DeleteUrlCacheContainerA
GetUrlCacheEntryInfoExA
CommitUrlCacheEntryW
InternetHangUp
InternetGetCookieA
FtpPutFileW
DetectAutoProxyUrl
InternetGetLastResponseInfoW
InternetTimeFromSystemTimeA
HttpOpenRequestA
InternetConfirmZoneCrossing
HttpAddRequestHeadersW
CreateUrlCacheContainerA
FtpRenameFileA
FtpDeleteFileA
InternetConnectA
IsUrlCacheEntryExpiredA
FindNextUrlCacheEntryExA
SetUrlCacheEntryGroupW
InternetGoOnlineW
FindFirstUrlCacheGroup
ShowCertificate
InternetLockRequestFile
InternetSetDialState
GetUrlCacheGroupAttributeW
InternetQueryOptionW
RegisterUrlCacheNotification
InternetTimeToSystemTimeA
InternetOpenA
GopherCreateLocatorW
InternetSetDialStateW
InternetShowSecurityInfoByURLA
SetUrlCacheGroupAttributeW
FtpFindFirstFileA
FtpGetFileA
InternetAttemptConnect
GopherCreateLocatorA
InternetGetCookieW
HttpSendRequestExW
HttpOpenRequestW
SetUrlCacheEntryInfoA
DeleteUrlCacheContainerW
InternetGetConnectedStateEx
GopherOpenFileA
FtpPutFileA
InternetSetCookieW
GetUrlCacheEntryInfoExW
InternetCheckConnectionA
InternetTimeToSystemTimeW
InternetCreateUrlA
GopherGetLocatorTypeA
RunOnceUrlCache
FtpOpenFileW
FreeUrlCacheSpaceA
UnlockUrlCacheEntryFile
InternetCanonicalizeUrlW
RetrieveUrlCacheEntryStreamW
InternetGetConnectedStateExW
InternetReadFileExA
InternetInitializeAutoProxyDll
GetUrlCacheConfigInfoW
FindNextUrlCacheContainerA
FtpDeleteFileW
InternetConnectW
HttpQueryInfoA
InternetGetCertByURL
InternetSetOptionA
InternetOpenUrlA
LoadUrlCacheContent
DeleteUrlCacheEntryW
InternetCanonicalizeUrlA
FtpCreateDirectoryA
SetUrlCacheEntryGroup
InternetWriteFileExW
InternetCrackUrlW
CommitUrlCacheEntryA
FindFirstUrlCacheEntryW
InternetCombineUrlA
InternetAlgIdToStringA
CreateUrlCacheContainerW
InternetDialW
FtpPutFileEx
FtpGetFileW
HttpSendRequestW
RetrieveUrlCacheEntryStreamA
FindNextUrlCacheEntryW
GopherOpenFileW
SetUrlCacheEntryGroupA
GetUrlCacheEntryInfoW
InternetSetOptionExW
FindFirstUrlCacheContainerW
SetUrlCacheGroupAttributeA
Sections
.text Size: 126KB - Virtual size: 126KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 266KB - Virtual size: 266KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ