Static task
static1
Behavioral task
behavioral1
Sample
3243dadd210324a71e433c78aca1fc85_JaffaCakes118.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
3243dadd210324a71e433c78aca1fc85_JaffaCakes118.exe
Resource
win10v2004-20240704-en
windows10-2004-x64
General
-
Target
3243dadd210324a71e433c78aca1fc85_JaffaCakes118
-
Size
415KB
-
MD5
3243dadd210324a71e433c78aca1fc85
-
SHA1
d9a445ef7a245721021169eb4406d49b513b56d0
-
SHA256
6bf9b606e1aa532c91a41a0589f052d480b90f9072417dfc4a3b429aea5575ca
-
SHA512
c7b22dc5590fd5863b2d7288ca62e40e2796447b80871213b4c2b440f81c015a0c93d9290e988f80cb7c68ece81efd8ccc4a349825ede7908b9ce0f8ed5447a3
-
SSDEEP
12288:00/b0oCzV4Za8ILe+VAVoKZtpSANyYVxrDxUuGy:00/bJCzZ8of2pS2PV9DxUu7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3243dadd210324a71e433c78aca1fc85_JaffaCakes118
Files
-
3243dadd210324a71e433c78aca1fc85_JaffaCakes118.exe windows:4 windows x86 arch:x86
4baf04ce30d4675e8fa1fa667deec0a1
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
DefineDosDeviceW
SetFileAttributesW
GetCurrencyFormatW
SetLastError
CreateDirectoryA
GetConsoleMode
VirtualAllocEx
GetSystemDefaultLCID
SetConsoleTitleA
GetThreadLocale
EscapeCommFunction
GetConsoleTitleW
GetCurrencyFormatA
WritePrivateProfileStructA
GetDiskFreeSpaceW
SetVolumeLabelW
WaitCommEvent
GetEnvironmentStrings
CreateMutexW
GetLogicalDrives
CreateWaitableTimerA
GlobalReAlloc
SetConsoleScreenBufferSize
GetLogicalDriveStringsW
lstrcmp
GetTempPathW
AddAtomW
GetModuleFileNameW
lstrcmpiW
GlobalGetAtomNameA
VirtualFree
WriteProfileSectionA
LocalSize
GlobalMemoryStatus
lstrcmpiA
FindResourceA
EnumDateFormatsExW
RemoveDirectoryA
LoadResource
GetStringTypeW
CreateProcessW
FindClose
MoveFileExA
EnumSystemCodePagesA
SetThreadExecutionState
ReleaseMutex
VirtualFreeEx
WaitForSingleObjectEx
OutputDebugStringA
WriteProfileSectionW
ReadConsoleW
SetLocaleInfoW
GetTimeFormatW
GetSystemDirectoryW
GetCommandLineA
GlobalHandle
OpenSemaphoreW
GetFileAttributesExW
HeapDestroy
ReadFileScatter
AddAtomA
SetEndOfFile
WritePrivateProfileSectionA
GetPrivateProfileSectionNamesW
WritePrivateProfileSectionW
SetFileTime
FlushInstructionCache
LockFile
GetDriveTypeW
GetPriorityClass
VirtualUnlock
GetFullPathNameA
GetProcessAffinityMask
GetFullPathNameW
lstrcpy
GetLongPathNameW
GlobalGetAtomNameW
GetCalendarInfoW
MapViewOfFile
GetSystemDefaultLangID
SetConsoleOutputCP
CreateDirectoryW
FindAtomA
CreateWaitableTimerW
GetFileInformationByHandle
SetConsoleActiveScreenBuffer
GetLargestConsoleWindowSize
GetVolumeInformationW
Thread32First
UpdateResourceW
GetNumberFormatW
FreeEnvironmentStringsA
SetSystemTime
CreateConsoleScreenBuffer
SetCriticalSectionSpinCount
DisableThreadLibraryCalls
ReadConsoleOutputCharacterW
GetProcessTimes
PeekNamedPipe
LoadModule
GetTimeZoneInformation
OpenFileMappingW
GetNumberOfConsoleInputEvents
GetHandleInformation
ReadConsoleInputW
GetTempPathA
GetProfileStringA
CreateSemaphoreW
CreateNamedPipeW
CreateMailslotA
CreateToolhelp32Snapshot
SetConsoleTitleW
Toolhelp32ReadProcessMemory
ReadConsoleOutputW
WinExec
ReadConsoleOutputCharacterA
GetDateFormatA
CreateNamedPipeA
SetConsoleCursorPosition
WriteProfileStringA
DeleteFileA
WriteConsoleInputW
HeapLock
EnumResourceLanguagesW
TransactNamedPipe
FreeConsole
InterlockedDecrement
SetConsoleWindowInfo
FlushViewOfFile
GetEnvironmentVariableW
GetConsoleOutputCP
WritePrivateProfileStringW
GetNumberFormatA
SetConsoleCP
EnumCalendarInfoA
GetFileType
WaitForMultipleObjects
ResumeThread
GetNamedPipeHandleStateA
LocalAlloc
TlsFree
SetEnvironmentVariableA
GetVersionExA
InitializeCriticalSectionAndSpinCount
GetPrivateProfileStringW
lstrcpynA
GetWindowsDirectoryA
CreateFileMappingA
Heap32ListFirst
WriteFileEx
LoadLibraryW
CreateEventW
WriteConsoleOutputAttribute
DeleteCriticalSection
CloseHandle
GetProcessHeaps
SetFilePointer
FindResourceExW
GetSystemDirectoryA
HeapWalk
VirtualProtect
LockResource
FillConsoleOutputAttribute
WaitNamedPipeA
ReadConsoleA
GetFileAttributesA
HeapUnlock
FormatMessageW
GetSystemTimeAdjustment
SleepEx
GlobalLock
TransmitCommChar
ReadFileEx
GetQueuedCompletionStatus
ReadFile
PeekConsoleInputA
GetEnvironmentStringsW
GlobalCompact
UnlockFileEx
OpenMutexW
UnhandledExceptionFilter
LocalShrink
LocalLock
ReadConsoleOutputAttribute
GetDiskFreeSpaceA
EnumDateFormatsA
VirtualQueryEx
GetPrivateProfileStructA
SetThreadAffinityMask
IsValidLocale
FileTimeToLocalFileTime
OpenEventA
RtlZeroMemory
WaitForSingleObject
ConvertDefaultLocale
SetThreadContext
ReadConsoleInputA
GetDateFormatW
GetFileAttributesW
GetShortPathNameW
GetWindowsDirectoryW
SetThreadLocale
GetDiskFreeSpaceExW
TryEnterCriticalSection
lstrlen
FindFirstFileW
RemoveDirectoryW
MoveFileA
SuspendThread
CreateEventA
EnumSystemLocalesA
SetWaitableTimer
SetComputerNameW
Module32First
FlushConsoleInputBuffer
lstrcpyW
SystemTimeToTzSpecificLocalTime
GetNamedPipeInfo
SearchPathA
SetSystemTimeAdjustment
Sleep
IsValidCodePage
FindAtomW
ReadProcessMemory
WriteProfileStringW
SetConsoleTextAttribute
EnumResourceNamesA
GlobalFindAtomW
lstrcmpA
lstrlenA
SearchPathW
GlobalFindAtomA
GetLogicalDriveStringsA
SetConsoleCursorInfo
GetLongPathNameA
GetVersionExW
ExitThread
CreateFileA
WriteConsoleOutputW
GetProcessPriorityBoost
CreateThread
GetWriteWatch
FreeLibraryAndExitThread
GetThreadSelectorEntry
FoldStringA
HeapSize
UpdateResourceA
LocalFlags
CreateFileMappingW
WriteConsoleOutputCharacterA
GlobalUnfix
FindResourceExA
WideCharToMultiByte
LocalUnlock
gdi32
GetTextCharsetInfo
GetSystemPaletteEntries
SaveDC
GetDIBColorTable
AnimatePalette
TextOutA
ExcludeClipRect
SetColorSpace
GetNearestPaletteIndex
GetDeviceCaps
EnumFontFamiliesW
GetCharABCWidthsA
Chord
GetBitmapDimensionEx
FrameRgn
RealizePalette
SetWindowExtEx
GetEnhMetaFilePaletteEntries
SetStretchBltMode
CreateColorSpaceA
GetPaletteEntries
CreateCompatibleBitmap
UpdateICMRegKeyW
CombineRgn
RectVisible
PlgBlt
EnumFontFamiliesA
GetTextExtentPoint32A
SetPixelV
GetArcDirection
GetLogColorSpaceW
StretchDIBits
GetDIBits
GetWindowExtEx
EnumMetaFile
ArcTo
CreateCompatibleDC
CancelDC
PolyTextOutA
PolyPolyline
IntersectClipRect
SetPolyFillMode
OffsetViewportOrgEx
GetTextExtentPoint32W
LineDDA
DeleteColorSpace
ScaleViewportExtEx
GetWorldTransform
OffsetWindowOrgEx
GetGraphicsMode
SetMiterLimit
DPtoLP
GetBoundsRect
GetTextFaceA
Pie
GetBitmapBits
FillRgn
GetOutlineTextMetricsA
TextOutW
GetMapMode
PolyPolygon
CreateFontIndirectA
CreateICA
GetTextExtentExPointA
FillPath
GetAspectRatioFilterEx
UnrealizeObject
Ellipse
SelectClipPath
GetClipRgn
ExtSelectClipRgn
GetCharWidthW
SetWindowOrgEx
gdiPlaySpoolStream
CreateDCA
GetTextMetricsW
ResetDCA
EndDoc
CreateBitmapIndirect
ModifyWorldTransform
GetClipBox
AddFontResourceW
CloseFigure
GetEnhMetaFileBits
EnumFontFamiliesExA
DeleteDC
SetMetaFileBitsEx
ExtTextOutA
CloseMetaFile
GdiPlayScript
PathToRegion
ChoosePixelFormat
SetSystemPaletteUse
CreateBitmap
ResizePalette
CreateHatchBrush
UpdateICMRegKeyA
GetCurrentPositionEx
GetTextExtentExPointW
SetWorldTransform
GetMetaFileW
GetOutlineTextMetricsW
PlayEnhMetaFileRecord
EnumFontsA
OffsetRgn
SetICMProfileA
GetPixelFormat
GetRegionData
CreateICW
StretchBlt
CreateMetaFileA
GdiFlush
SetBitmapBits
CreateHalftonePalette
CreateDIBPatternBrush
EnumFontFamiliesExW
CloseEnhMetaFile
PolyBezier
GetObjectW
GetKerningPairsA
UpdateColors
BeginPath
GetKerningPairs
GetFontLanguageInfo
GetCharABCWidthsW
CreatePenIndirect
SetTextColor
ColorMatchToTarget
GetCharWidthFloatW
PtVisible
PolyDraw
CreateEnhMetaFileA
GetEnhMetaFileW
SetMagicColors
SetPaletteEntries
SetLayout
EnumICMProfilesW
CheckColorsInGamut
PolyBezierTo
SetTextAlign
GdiPlayJournal
BitBlt
EnumObjects
FloodFill
EnumEnhMetaFile
TranslateCharsetInfo
GdiSetBatchLimit
DeviceCapabilitiesExA
GetCharABCWidthsFloatA
CopyMetaFileW
GetColorSpace
GetEnhMetaFileDescriptionW
SetBkMode
CreateScalableFontResourceW
GetFontData
SetDIBitsToDevice
CreatePolyPolygonRgn
PlayMetaFileRecord
GetCharacterPlacementW
FlattenPath
SetDIBits
SetDIBColorTable
AbortDoc
ScaleWindowExtEx
Polygon
GetColorAdjustment
GetTextCharset
CreateRectRgn
FixBrushOrgEx
GetRgnBox
GetViewportExtEx
GetMetaRgn
SwapBuffers
AbortPath
GetKerningPairsW
StrokePath
GetTextFaceW
DeviceCapabilitiesExW
WidenPath
PtInRegion
Rectangle
SetFontEnumeration
AngleArc
GetEnhMetaFileDescriptionA
CreateDCW
GetObjectA
GetICMProfileW
CreateRoundRectRgn
GetMetaFileA
GetCharWidth32W
DescribePixelFormat
DeleteObject
RestoreDC
MoveToEx
SetViewportExtEx
GetWindowOrgEx
ExtCreatePen
DrawEscape
CreatePolygonRgn
CreateDIBPatternBrushPt
CreateScalableFontResourceA
GetROP2
CreatePatternBrush
SetROP2
PlayMetaFile
EnumICMProfilesA
CreateDIBSection
GetPath
SetColorAdjustment
GetTextColor
EqualRgn
CreateEllipticRgnIndirect
SetViewportOrgEx
ExtCreateRegion
DeleteMetaFile
StartDocA
MaskBlt
GetGlyphOutlineA
DeleteEnhMetaFile
GetRasterizerCaps
EndPage
LineTo
RemoveFontResourceW
CombineTransform
StrokeAndFillPath
GetEnhMetaFileA
RoundRect
CreateFontIndirectW
GetGlyphOutline
EnableEUDC
SetArcDirection
SetPixel
GetNearestColor
GetCurrentObject
GetWinMetaFileBits
SelectObject
PatBlt
GetCharWidthA
SetEnhMetaFileBits
GetEnhMetaFileHeader
StartDocW
SetAbortProc
GetCharABCWidthsFloatW
GetTextExtentPointA
GdiGetBatchLimit
GdiPlayDCScript
CreateBrushIndirect
SelectPalette
SetBkColor
Arc
CreatePen
SetMapperFlags
SetPixelFormat
GetObjectType
GetPixel
SetRectRgn
CreateRectRgnIndirect
GetDCOrgEx
GetCharWidth32A
GetStockObject
GetCharacterPlacementA
AddFontResourceA
ExtEscape
CreateEllipticRgn
PolyTextOutW
GetBrushOrgEx
CreateFontW
Polyline
SelectClipRgn
CopyEnhMetaFileA
GetTextCharacterExtra
SetBrushOrgEx
ResetDCW
CreatePalette
GetRandomRgn
GetTextAlign
GetCharWidthFloatA
CreateColorSpaceW
CreateFontA
CopyEnhMetaFileW
Escape
SetGraphicsMode
CreateEnhMetaFileW
GetPolyFillMode
OffsetClipRgn
PaintRgn
SetBoundsRect
CreateDIBitmap
ExtTextOutW
GetLogColorSpaceA
CreateSolidBrush
SetICMProfileW
LPtoDP
GetICMProfileA
GetTextExtentPointW
GetDeviceGammaRamp
ExtFloodFill
GetLayout
SetICMMode
GetBkMode
RemoveFontResourceA
EndPath
GetSystemPaletteUse
StartPage
SetTextJustification
GetBkColor
SetMapMode
PolylineTo
PlayEnhMetaFile
CopyMetaFileA
GetStretchBltMode
SetMetaRgn
SetWinMetaFileBits
SetDeviceGammaRamp
EnumFontsW
GetMetaFileBitsEx
GetGlyphOutlineW
CreateDiscardableBitmap
SetBitmapDimensionEx
InvertRgn
CreateMetaFileW
GetViewportOrgEx
comdlg32
GetOpenFileNameW
GetFileTitleA
PrintDlgW
ChooseColorW
FindTextW
GetSaveFileNameW
PageSetupDlgW
FindTextA
user32
MessageBoxIndirectW
KillTimer
DdeUnaccessData
CreateDialogIndirectParamA
MessageBoxA
EnumPropsExW
LoadStringW
TranslateMDISysAccel
GetClassNameA
CharLowerA
DrawStateA
GetTabbedTextExtentA
MapVirtualKeyExA
AnyPopup
EnumPropsW
ChangeDisplaySettingsA
SetTimer
ToUnicodeEx
RegisterHotKey
SetDlgItemTextW
EndPaint
DdeAbandonTransaction
SetWindowLongW
GetKeyState
DrawFrameControl
GetClipboardFormatNameA
ReplyMessage
LoadAcceleratorsA
GetDlgItemTextA
DdeNameService
SetClipboardData
SetUserObjectInformationW
FillRect
ToAsciiEx
MessageBoxExA
CallWindowProcW
LoadMenuIndirectW
GetKeyboardType
CloseClipboard
ScreenToClient
RegisterClassExA
EnumWindowStationsA
DrawAnimatedRects
RemovePropW
IsDialogMessage
CharPrevW
GetKeyboardLayoutNameA
PeekMessageW
CloseDesktop
GetLastActivePopup
DrawMenuBar
EnableMenuItem
SetCursor
BlockInput
GetMenuState
SwapMouseButton
TileWindows
GetWindowModuleFileNameW
CreateIconFromResource
SetMenuItemBitmaps
IsCharUpperW
GetWindowTextLengthW
SetWindowWord
InternalGetWindowText
DdeQueryStringW
CharNextExA
SetUserObjectSecurity
FreeDDElParam
LoadMenuA
ChangeClipboardChain
DdeKeepStringHandle
CreatePopupMenu
MsgWaitForMultipleObjects
PostMessageW
OpenInputDesktop
VkKeyScanExA
DragDetect
DrawTextW
shell32
RealShellExecuteA
DragAcceptFiles
SHGetInstanceExplorer
SHGetSpecialFolderPathA
SHGetFileInfo
ShellExecuteEx
SHLoadInProc
SHGetSpecialFolderPathW
SheGetDirA
ExtractIconEx
FreeIconList
ExtractAssociatedIconW
SHFreeNameMappings
DragQueryFileAorW
CheckEscapesW
SHInvokePrinterCommandW
SHGetFileInfoW
ShellExecuteA
SHAppBarMessage
SHBrowseForFolderA
FindExecutableA
ShellExecuteW
SHFileOperation
SHEmptyRecycleBinA
RealShellExecuteW
DragQueryFileA
SHQueryRecycleBinA
ShellAboutA
SHGetDataFromIDListA
SHGetDesktopFolder
SHUpdateRecycleBinIcon
RealShellExecuteExW
SheChangeDirA
ExtractAssociatedIconExW
ExtractIconW
ShellExecuteExA
SHGetDiskFreeSpaceA
DoEnvironmentSubstW
ExtractIconExA
SHGetDataFromIDListW
InternalExtractIconListW
SHFormatDrive
SHGetPathFromIDListA
SHFileOperationW
SHEmptyRecycleBinW
DragFinish
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetMalloc
ExtractIconA
DragQueryFile
ShellExecuteExW
ExtractAssociatedIconExA
SHBrowseForFolder
ExtractAssociatedIconA
ExtractIconExW
InternalExtractIconListA
SHGetNewLinkInfo
SHGetSettings
DragQueryFileW
RealShellExecuteExA
CommandLineToArgvW
DragQueryPoint
SHChangeNotify
SHGetFileInfoA
SHGetPathFromIDList
ShellHookProc
SHInvokePrinterCommandA
DoEnvironmentSubstA
SheChangeDirExW
FindExecutableW
DuplicateIcon
SHGetPathFromIDListW
SheSetCurDrive
SHQueryRecycleBinW
SHAddToRecentDocs
Sections
.text Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 294KB - Virtual size: 294KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE