Static task
static1
Behavioral task
behavioral1
Sample
30d216262b6db146cf18c044e7de0a3c_JaffaCakes118.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral2
Sample
30d216262b6db146cf18c044e7de0a3c_JaffaCakes118.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
30d216262b6db146cf18c044e7de0a3c_JaffaCakes118
-
Size
94KB
-
MD5
30d216262b6db146cf18c044e7de0a3c
-
SHA1
ffcabde61a3440d2e74defa4221a5698ab76275e
-
SHA256
971454d7dfc778a0b5b48930b5fe1472be3b5f006de16a9f5b781847bc86beb8
-
SHA512
3c6e1abdbe29f884544482fc920d88963caab0a7e8c47cc1f97abde39789d862cafb24cc833f4232c9a595fa930a83beb1399407417d3d09d54baa94505bfef4
-
SSDEEP
1536:BqQt1TBPQ9BMRLMY8nEwiugD89fx8RX4WvpeF6h3cTVjmKDtpOSOBAIk9R8AxQ9d:gG1TBPMa9MYzwivwkBCucTVzppOSO9kO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 30d216262b6db146cf18c044e7de0a3c_JaffaCakes118
Files
-
30d216262b6db146cf18c044e7de0a3c_JaffaCakes118.exe windows:5 windows x86 arch:x86
80550edeb8bf4cb9f0ef9737fe13b93f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetWindowWord
IsCharAlphaNumericW
SetClipboardData
RegisterDeviceNotificationW
SetWindowLongW
GetMenu
GetCursorInfo
CharNextExA
DragObject
EnumPropsExA
LoadIconW
GetMenuItemID
SetWindowLongA
DispatchMessageW
CloseWindow
IsClipboardFormatAvailable
EnumPropsA
DestroyCursor
DrawFrame
SetMenuDefaultItem
SetPropW
MessageBoxIndirectA
ClipCursor
GetListBoxInfo
TranslateAccelerator
FreeDDElParam
EndDeferWindowPos
GetScrollPos
GetMessageExtraInfo
TabbedTextOutA
SystemParametersInfoA
SetKeyboardState
CreateCursor
HideCaret
SendIMEMessageExW
SwitchToThisWindow
BroadcastSystemMessageW
DrawStateA
MsgWaitForMultipleObjectsEx
CallMsgFilterA
EnumDesktopWindows
RegisterClipboardFormatA
CharUpperA
GetWindowModuleFileNameA
EndPaint
CreateAcceleratorTableA
GetMenuCheckMarkDimensions
GetWindowContextHelpId
OpenInputDesktop
SetWindowTextW
GetThreadDesktop
SendMessageCallbackA
DdeQueryConvInfo
ChildWindowFromPoint
LockWindowUpdate
GetPropW
EnumWindows
BroadcastSystemMessageA
LoadIconA
SwapMouseButton
GetCursor
GetUserObjectInformationA
VkKeyScanW
GetSysColorBrush
GetSysColor
GetDCEx
DdeQueryStringA
DlgDirSelectExA
RemoveMenu
DrawFocusRect
GetMessageW
DdeInitializeA
InvertRect
IsChild
InvalidateRgn
TranslateAcceleratorA
SetDoubleClickTime
UnhookWinEvent
GetUpdateRect
DdeReconnect
GetNextDlgGroupItem
GetComboBoxInfo
MonitorFromPoint
ChangeDisplaySettingsExA
WaitForInputIdle
UnloadKeyboardLayout
LoadBitmapW
HiliteMenuItem
CopyIcon
SetClassLongA
CreateDialogIndirectParamW
ToUnicodeEx
RealChildWindowFromPoint
WINNLSGetIMEHotkey
GetWindow
DdeSetQualityOfService
DdeConnect
DlgDirListComboBoxA
PostMessageA
SendIMEMessageExA
GetUserObjectInformationW
RemovePropW
GetKeyboardLayoutNameA
SetWindowsHookA
EmptyClipboard
ImpersonateDdeClientWindow
GetWindowRgn
DestroyIcon
SetMenu
GetNextDlgTabItem
IsIconic
GetActiveWindow
EnableMenuItem
DdeImpersonateClient
RealGetWindowClass
OpenDesktopA
OemToCharBuffW
ShowOwnedPopups
SetProcessWindowStation
SetWindowWord
GetKeyboardLayout
GetMenuStringW
CharPrevExA
TrackMouseEvent
ModifyMenuW
ReuseDDElParam
GetClipboardViewer
EndMenu
LookupIconIdFromDirectoryEx
ReleaseCapture
GetPriorityClipboardFormat
MapWindowPoints
FlashWindow
RegisterDeviceNotificationA
MessageBeep
DrawTextExW
ReplyMessage
GetClassLongA
LoadStringW
CallWindowProcA
GetMenuContextHelpId
GetCapture
SetWindowTextA
GetWindowTextW
SetDlgItemTextA
IsWindow
IsDialogMessageA
DdeCreateStringHandleA
PtInRect
AppendMenuW
GetSystemMetrics
SendMessageTimeoutA
MessageBoxExW
CallMsgFilterW
AttachThreadInput
DrawStateW
IsZoomed
DlgDirSelectComboBoxExA
TileChildWindows
GetMenuDefaultItem
ToAsciiEx
GetGUIThreadInfo
EnumDisplaySettingsA
LoadKeyboardLayoutW
ValidateRgn
MessageBoxIndirectW
CloseClipboard
EnumDesktopsW
GetWindowModuleFileNameW
DrawFrameControl
VkKeyScanExW
LoadAcceleratorsA
SetMenuItemInfoW
GetProcessWindowStation
DdeCmpStringHandles
CreateDesktopA
SetMenuItemInfoA
UnpackDDElParam
KillTimer
ScreenToClient
TrackPopupMenuEx
DlgDirListComboBoxW
FrameRect
UnionRect
SetProcessDefaultLayout
DlgDirListA
AdjustWindowRect
DialogBoxParamA
DlgDirSelectExW
SetWindowsHookExA
CheckDlgButton
SetUserObjectInformationW
ExcludeUpdateRgn
InflateRect
MenuItemFromPoint
GetParent
CharPrevW
SetMenuInfo
DrawAnimatedRects
GetWindowDC
GetMenuInfo
PostQuitMessage
DdeAbandonTransaction
SetClassLongW
LoadCursorW
GetScrollBarInfo
DdeNameService
LoadBitmapA
ArrangeIconicWindows
GetKeyState
OemToCharA
PostThreadMessageA
GetWindowPlacement
RemovePropA
GetWindowLongA
MessageBoxA
WinHelpW
IsCharAlphaW
GetOpenClipboardWindow
GetScrollRange
PeekMessageA
EnableScrollBar
DialogBoxIndirectParamA
TrackPopupMenu
EnableWindow
EnumWindowStationsA
DdeSetUserHandle
IsCharLowerW
CreateWindowExW
DestroyMenu
EnumChildWindows
DdeQueryNextServer
DlgDirListW
RegisterClipboardFormatW
WINNLSEnableIME
CharUpperW
RegisterClassExW
CheckMenuItem
RegisterClassExA
MoveWindow
GetMonitorInfoW
ShowScrollBar
SetPropA
ReleaseDC
ShowWindowAsync
IsRectEmpty
GetDoubleClickTime
DdeUninitialize
GetKeyboardLayoutNameW
CreateDialogIndirectParamA
CharLowerBuffW
GetDlgItemInt
IsCharLowerA
EnumDisplaySettingsExW
LoadMenuW
GetMenuItemCount
DefWindowProcW
DestroyAcceleratorTable
ShowCursor
SetUserObjectInformationA
GetPropA
GetWindowTextLengthW
MapDialogRect
EndDialog
CreateWindowStationA
GetMessageA
GetCaretBlinkTime
IsCharUpperW
VkKeyScanExA
MapVirtualKeyExA
LoadMenuIndirectA
CharToOemBuffA
DefMDIChildProcA
ScrollWindow
MsgWaitForMultipleObjects
ChildWindowFromPointEx
RegisterWindowMessageW
IsMenu
TranslateAcceleratorW
TileWindows
CharPrevA
SetClassWord
GetClientRect
CopyAcceleratorTableA
CharLowerA
GetMenuItemRect
CheckMenuRadioItem
SetDlgItemInt
SendInput
EditWndProc
SetWindowsHookW
PackDDElParam
ChangeDisplaySettingsW
BeginDeferWindowPos
SetScrollPos
GetQueueStatus
LoadImageW
DdeEnableCallback
RegisterClassW
FindWindowExA
FillRect
GetClassWord
EnumClipboardFormats
SetFocus
PostMessageW
DdeCreateStringHandleW
GetInputState
InsertMenuItemA
InSendMessage
FindWindowExW
InsertMenuA
IsCharAlphaNumericA
GetFocus
SetActiveWindow
SetRect
SendNotifyMessageW
InsertMenuW
DefFrameProcW
SetWindowPos
IsDialogMessageW
DrawIconEx
SetSysColors
WinHelpA
CloseDesktop
SystemParametersInfoW
EnumDisplayMonitors
ChangeMenuW
SetMessageQueue
UnhookWindowsHook
IsWindowEnabled
GetClassInfoExW
ChangeDisplaySettingsExW
SetSystemCursor
ScrollWindowEx
GetForegroundWindow
SetUserObjectSecurity
SetWindowContextHelpId
OffsetRect
CallNextHookEx
VkKeyScanA
DdeFreeStringHandle
CreateMDIWindowW
CharNextW
CloseWindowStation
DefWindowProcA
MonitorFromRect
GetKeyNameTextW
CreateIconFromResourceEx
CheckRadioButton
UnregisterClassA
GetInputDesktop
CharLowerW
DrawTextA
BroadcastSystemMessage
GetTabbedTextExtentA
CreateIconFromResource
EnumDisplayDevicesW
GetTopWindow
CascadeChildWindows
GetSubMenu
UnregisterHotKey
OpenClipboard
IntersectRect
OemToCharW
GetUpdateRgn
GetCaretPos
EndTask
ToAscii
GetIconInfo
DdeGetData
EnumWindowStationsW
WindowFromDC
GrayStringW
GetMonitorInfoA
CreateCaret
DdeCreateDataHandle
SetScrollRange
ChangeDisplaySettingsA
SubtractRect
TranslateMessage
UnregisterClassW
LookupIconIdFromDirectory
SendMessageA
GetWindowTextA
LoadMenuA
CreateIconIndirect
EnumPropsW
GetDlgItemTextA
OpenIcon
SetCursor
DefDlgProcW
MapVirtualKeyW
LoadKeyboardLayoutA
SetTimer
SendNotifyMessageA
SetWinEventHook
GetProcessDefaultLayout
kernel32
GetNumberFormatA
FindNextChangeNotification
FindClose
GetProcessHeap
SetFilePointer
FindNextFileA
CreateDirectoryExW
TerminateProcess
ReadConsoleW
Process32Next
FillConsoleOutputCharacterA
GlobalReAlloc
WriteFile
GetWindowsDirectoryW
GetSystemInfo
MoveFileExW
SetConsoleOutputCP
SetThreadPriority
SetStdHandle
SetConsoleTextAttribute
SetConsoleScreenBufferSize
LoadLibraryA
FoldStringW
LoadModule
UnlockFile
UnmapViewOfFile
SystemTimeToFileTime
GetProcessPriorityBoost
GetStartupInfoA
GetSystemTimeAdjustment
ResetWriteWatch
WritePrivateProfileStringA
CopyFileA
VirtualProtect
GetPrivateProfileSectionNamesA
VirtualProtectEx
EnumDateFormatsA
CreateToolhelp32Snapshot
GlobalAddAtomW
ReadFile
SetConsoleCtrlHandler
GlobalFree
GetCalendarInfoA
GetComputerNameW
ScrollConsoleScreenBufferA
GetEnvironmentVariableA
EnumTimeFormatsW
HeapLock
InitAtomTable
GetCurrentProcessId
SetCurrentDirectoryA
IsSystemResumeAutomatic
GetOEMCP
CreateMutexA
GetEnvironmentVariableW
LoadLibraryW
WriteFileEx
WritePrivateProfileSectionA
GetFileType
GetSystemDirectoryW
OpenMutexA
FindFirstFileW
EnumSystemCodePagesW
WideCharToMultiByte
LocalFileTimeToFileTime
lstrcmpW
CreateFileW
EnumResourceLanguagesW
LoadResource
GetAtomNameW
FindFirstFileExA
SetComputerNameW
CancelDeviceWakeupRequest
FreeLibrary
SetConsoleTitleA
UpdateResourceW
WriteConsoleA
GetFileAttributesExW
LocalSize
FileTimeToDosDateTime
SetLastError
SwitchToThread
WaitForMultipleObjectsEx
GetCurrencyFormatW
GetCurrentThread
VirtualAlloc
GenerateConsoleCtrlEvent
RemoveDirectoryW
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SystemTimeToTzSpecificLocalTime
EnumSystemLocalesW
MapViewOfFile
GetTempPathW
GetUserDefaultLCID
RemoveDirectoryA
GetModuleFileNameW
CreateEventA
lstrcpyn
SetEnvironmentVariableA
GetPrivateProfileSectionNamesW
GetStringTypeExA
EnumResourceTypesA
GetFileAttributesA
GetThreadLocale
OpenWaitableTimerW
MapViewOfFileEx
BackupSeek
HeapWalk
GetLogicalDrives
GetDiskFreeSpaceExW
WriteConsoleOutputCharacterW
GetStartupInfoW
CopyFileExW
FileTimeToSystemTime
LocalCompact
FindFirstFileExW
GetSystemDirectoryA
FreeEnvironmentStringsA
GetCPInfo
CopyFileW
GetVolumeInformationW
PulseEvent
ReadFileScatter
EnumSystemCodePagesA
WritePrivateProfileStringW
LockFile
SetHandleInformation
GetProcessShutdownParameters
TransactNamedPipe
SetComputerNameA
SetLocaleInfoW
GetCompressedFileSizeW
GlobalMemoryStatus
SetErrorMode
MulDiv
GetConsoleMode
ConvertDefaultLocale
MoveFileW
SetConsoleWindowInfo
CreateWaitableTimerW
SetConsoleCP
FreeResource
CreateMutexW
GetTempPathA
CreateNamedPipeW
CreateSemaphoreA
AreFileApisANSI
HeapCreate
GetLogicalDriveStringsW
FlushFileBuffers
GetCompressedFileSizeA
GlobalSize
GlobalFindAtomW
GetProcessAffinityMask
RequestDeviceWakeup
WriteConsoleW
GetExitCodeThread
CancelIo
GlobalAddAtomA
MoveFileExA
EnumCalendarInfoW
FormatMessageA
Process32First
Heap32ListNext
FatalExit
FindResourceExA
GlobalFlags
EnumDateFormatsExW
IsBadStringPtrA
WriteConsoleOutputA
GetLocaleInfoW
LocalShrink
HeapCompact
GetStringTypeExW
TerminateThread
WaitNamedPipeW
GetFileTime
GetModuleHandleW
GetCurrentDirectoryW
WinExec
LockFileEx
SetHandleCount
GetProfileSectionA
UpdateResourceA
GetModuleHandleA
GetVersion
WaitForSingleObject
lstrcmpA
GetPriorityClass
VerLanguageNameA
GetProcAddress
SetEndOfFile
IsValidCodePage
GetMailslotInfo
FindFirstFileA
SetEnvironmentVariableW
GetThreadContext
SetConsoleMode
LocalReAlloc
GetProcessTimes
OpenSemaphoreW
SetProcessPriorityBoost
SetCalendarInfoA
CreateMailslotA
GlobalDeleteAtom
ReadConsoleOutputCharacterW
GetLogicalDriveStringsA
ReadConsoleOutputAttribute
CompareStringA
GetSystemDefaultLangID
SwitchToFiber
CreateNamedPipeA
GetDateFormatA
GetCalendarInfoW
WritePrivateProfileStructA
SetCalendarInfoW
GetOverlappedResult
GetPrivateProfileIntW
GetVersionExW
IsProcessorFeaturePresent
GetTempFileNameW
OpenEventA
CreateFileMappingW
IsValidLocale
FindResourceExW
GetTimeFormatA
GetFileAttributesW
FreeConsole
CompareFileTime
GetStdHandle
GlobalLock
GlobalGetAtomNameA
SetLocalTime
FatalAppExitA
ReadConsoleOutputCharacterA
ReadConsoleInputA
CreateConsoleScreenBuffer
SetFileTime
LCMapStringA
SetSystemTime
SetProcessAffinityMask
CompareStringW
GetThreadPriority
GetShortPathNameW
IsBadCodePtr
GetProcessWorkingSetSize
GetLongPathNameW
Heap32First
GetCurrencyFormatA
ReadConsoleOutputW
IsBadHugeReadPtr
lstrcpynW
FreeEnvironmentStringsW
SetThreadPriorityBoost
FindResourceW
VirtualAllocEx
GlobalGetAtomNameW
GetEnvironmentStringsA
ResetEvent
LocalFlags
EnumResourceNamesA
GetACP
GetTimeZoneInformation
VirtualQuery
FindResourceA
EnumResourceNamesW
SetConsoleCursorPosition
GetThreadSelectorEntry
ReadFileEx
MultiByteToWideChar
Thread32Next
Module32Next
GetConsoleOutputCP
GetNamedPipeHandleStateW
GetCPInfoExW
SetSystemPowerState
AddAtomW
ConvertThreadToFiber
GetDiskFreeSpaceW
SuspendThread
EnumCalendarInfoExA
LoadLibraryExA
ReadConsoleA
GetNumberFormatW
Heap32Next
DisableThreadLibraryCalls
GetQueuedCompletionStatus
GetDiskFreeSpaceA
RtlFillMemory
CreateWaitableTimerA
ReadDirectoryChangesW
VirtualUnlock
GetProfileStringW
WriteConsoleInputW
DeleteFiber
DeleteFileW
WriteFileGather
GetPrivateProfileStructA
GetVolumeInformationA
GetWindowsDirectoryA
ReadConsoleInputW
SetThreadIdealProcessor
CreateEventW
CreateProcessW
ExpandEnvironmentStringsA
SetProcessShutdownParameters
WritePrivateProfileStructW
SignalObjectAndWait
GetPrivateProfileSectionA
LocalLock
AddAtomA
IsBadReadPtr
GetCPInfoExA
GlobalUnlock
TlsFree
GetEnvironmentStringsW
GetDateFormatW
TlsGetValue
SleepEx
SetFileAttributesW
lstrcmpiW
GlobalFindAtomA
SetFileAttributesA
FoldStringA
GetVersionExA
DeleteFileA
LoadLibraryExW
OpenFileMappingW
GetLargestConsoleWindowSize
CreateFiber
WaitNamedPipeA
QueryPerformanceFrequency
FlushConsoleInputBuffer
FileTimeToLocalFileTime
FillConsoleOutputCharacterW
SetThreadLocale
GetBinaryType
GetProcessVersion
HeapFree
ReleaseSemaphore
lstrlenA
FindAtomA
GetDriveTypeW
WriteConsoleInputA
GetPrivateProfileIntA
AllocConsole
WaitForSingleObjectEx
FormatMessageW
lstrcat
VirtualFree
SetLocaleInfoA
OpenFileMappingA
lstrcmpi
IsBadStringPtrW
OpenSemaphoreA
VirtualQueryEx
BackupWrite
GetBinaryTypeW
LCMapStringW
ExpandEnvironmentStringsW
GetEnvironmentStrings
ReadProcessMemory
Thread32First
BackupRead
SetMessageWaitingIndicator
GetBinaryTypeA
Heap32ListFirst
ReleaseMutex
HeapDestroy
EnumResourceLanguagesA
QueryDosDeviceA
lstrcmpiA
advapi32
RegSetValueW
SetServiceBits
SetSecurityDescriptorSacl
CryptSetProviderExW
AddAccessDeniedAce
ObjectPrivilegeAuditAlarmA
RegisterServiceCtrlHandlerW
ConvertSecurityDescriptorToAccessW
LookupPrivilegeNameW
AbortSystemShutdownW
IsValidAcl
QueryServiceStatus
OpenSCManagerA
GetPrivateObjectSecurity
SetEntriesInAccessListA
CopySid
DeregisterEventSource
InitiateSystemShutdownW
RegSaveKeyW
CloseEventLog
GetSecurityInfoExW
LookupPrivilegeValueA
EnumServicesStatusW
SetEntriesInAuditListW
SetSecurityInfo
GetSecurityDescriptorLength
RegSetValueExA
BuildImpersonateTrusteeA
CreatePrivateObjectSecurity
MakeAbsoluteSD
shlwapi
PathGetDriveNumberW
StrNCatW
PathSearchAndQualifyA
SHRegWriteUSValueA
PathRemoveArgsA
SHDeleteKeyA
PathBuildRootA
IntlStrEqWorkerA
SHRegGetUSValueW
SHRegSetUSValueA
UrlGetPartW
SHGetValueA
PathAddExtensionW
SHSetThreadRef
SHOpenRegStream2W
StrChrA
StrCatBuffW
StrRetToBufW
AssocQueryStringA
StrDupA
PathQuoteSpacesW
StrStrA
PathUnquoteSpacesA
StrStrW
PathStripToRootA
PathRelativePathToW
PathIsUNCA
PathCreateFromUrlA
PathIsURLW
ole32
UpdateDCOMSettings
CoRegisterMessageFilter
CoGetStandardMarshal
OleTranslateAccelerator
OleSetClipboard
CoLockObjectExternal
OleRegGetUserType
OleCreateFromFile
WriteOleStg
FreePropVariantArray
CoCreateGuid
CoCreateFreeThreadedMarshaler
CreateAntiMoniker
CoQueryClientBlanket
StringFromGUID2
CoReleaseMarshalData
CoUnmarshalInterface
Sections
.text Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 23KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 728B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ