Static task
static1
Behavioral task
behavioral1
Sample
328e911d9c74522620958e89ba471dd0_JaffaCakes118.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
328e911d9c74522620958e89ba471dd0_JaffaCakes118.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
328e911d9c74522620958e89ba471dd0_JaffaCakes118
-
Size
385KB
-
MD5
328e911d9c74522620958e89ba471dd0
-
SHA1
f267f2e732c06d6311cc17ec76b9e919a324f372
-
SHA256
6869055aac8a4112175a202a5cbf6925146ae5e9a085647d523e0a8ef052e9f5
-
SHA512
d46a898ce665b04a6f366ebd67a36678e520757a35bd572abf9e5e0d47c05b4363a106c47585b451c720a799771c521fcc4fe65ec3ae68c9c250ee8508d6daaf
-
SSDEEP
12288:leUwf/wN0IAovV/1P7s6jn11GCaCdW2i/XNA:pj71jNBvvGC
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 328e911d9c74522620958e89ba471dd0_JaffaCakes118
Files
-
328e911d9c74522620958e89ba471dd0_JaffaCakes118.exe windows:4 windows x86 arch:x86
8362a325b0df0e08e8f62981715d75ba
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
WritePrivateProfileStructW
EnumResourceTypesW
SetCurrentDirectoryA
GetCurrentDirectoryA
GetSystemTime
GetUserDefaultLCID
FlushInstructionCache
EnumCalendarInfoExA
SetLocaleInfoA
SetConsoleTitleW
FindNextFileW
SetPriorityClass
FindFirstFileA
MoveFileExW
CreateFileW
EscapeCommFunction
PulseEvent
SetEvent
ReadDirectoryChangesW
CreateRemoteThread
SetConsoleTextAttribute
lstrcpyA
GetQueuedCompletionStatus
SetComputerNameA
FlushConsoleInputBuffer
DeleteFileW
EnumResourceTypesA
FindFirstChangeNotificationA
GetCompressedFileSizeA
lstrcmpi
OpenMutexW
SetTimeZoneInformation
SetEnvironmentVariableA
DisconnectNamedPipe
InterlockedCompareExchange
LocalReAlloc
lstrlenW
GetNamedPipeHandleStateA
DeleteFileA
GetHandleInformation
SetConsoleActiveScreenBuffer
GetFileAttributesW
GetProfileIntW
GetFileTime
InterlockedIncrement
FindAtomA
CreateMutexW
FindAtomW
WriteFile
EnumSystemCodePagesA
GlobalMemoryStatus
lstrcat
FindResourceExW
LockFileEx
GetPrivateProfileStringW
EnumDateFormatsExA
GetTimeFormatA
OpenMutexA
SignalObjectAndWait
CreateEventA
GetComputerNameW
GetPrivateProfileSectionA
FreeEnvironmentStringsA
CreateConsoleScreenBuffer
GetFullPathNameW
GetEnvironmentStringsW
CreateNamedPipeA
ReadProcessMemory
GetVolumeInformationA
GetConsoleCP
GetConsoleScreenBufferInfo
lstrcmp
OutputDebugStringA
SetEnvironmentVariableW
FreeLibraryAndExitThread
UnhandledExceptionFilter
GetTimeFormatW
GetEnvironmentStringsA
GetThreadTimes
OpenProcess
SetConsoleCursorPosition
lstrcpyn
ReadFile
GetLocaleInfoW
GetNumberOfConsoleMouseButtons
SuspendThread
FreeEnvironmentStringsW
VirtualProtectEx
InterlockedDecrement
CreateWaitableTimerW
GetCalendarInfoA
GetSystemPowerStatus
WriteConsoleOutputA
AddAtomA
HeapValidate
RtlMoveMemory
GetNumberFormatA
SetThreadContext
SetVolumeLabelW
WinExec
GetLogicalDrives
VirtualLock
ReadConsoleInputW
OpenFileMappingA
VirtualProtect
GetPrivateProfileIntA
CreateNamedPipeW
GetProfileSectionA
GlobalFlags
GlobalCompact
SetFilePointer
IsValidCodePage
OpenEventA
BeginUpdateResourceA
GetConsoleCursorInfo
LoadLibraryExW
LocalUnlock
FindFirstChangeNotificationW
RtlFillMemory
WriteConsoleOutputW
GlobalLock
GetEnvironmentVariableW
EnumResourceLanguagesA
LoadLibraryW
EnumTimeFormatsA
GetSystemDirectoryW
Thread32First
SetComputerNameW
GetThreadLocale
LocalSize
DebugActiveProcess
OpenSemaphoreW
GetLogicalDriveStringsW
BeginUpdateResourceW
LocalCompact
UnlockFile
FreeConsole
SetThreadAffinityMask
DefineDosDeviceW
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
WriteProfileSectionW
FillConsoleOutputAttribute
GetStringTypeExW
GetProcessPriorityBoost
GetProfileStringW
SetConsoleScreenBufferSize
SetCriticalSectionSpinCount
WaitForMultipleObjectsEx
GetPrivateProfileSectionNamesW
VirtualUnlock
ReadConsoleOutputW
EnumSystemLocalesA
WritePrivateProfileStringW
TlsSetValue
lstrlen
ReadConsoleOutputCharacterW
GetSystemDefaultLCID
GetDateFormatW
GetAtomNameW
InitAtomTable
GetNamedPipeHandleStateW
GetEnvironmentStrings
ReleaseMutex
FindFirstFileW
GetAtomNameA
WritePrivateProfileStringA
GlobalUnlock
SearchPathA
GetPrivateProfileStructW
SetThreadLocale
GetProcAddress
lstrcmpiW
SetSystemTime
CreateMutexA
SetConsoleCursorInfo
SetThreadPriorityBoost
ReadConsoleOutputAttribute
WaitNamedPipeW
EnumSystemCodePagesW
EnumResourceLanguagesW
GetLocalTime
DuplicateHandle
DefineDosDeviceA
GetFileAttributesExA
EraseTape
OpenWaitableTimerA
GetCurrentDirectoryW
FileTimeToDosDateTime
HeapLock
GetDateFormatA
lstrcpy
RtlZeroMemory
WriteFileEx
LeaveCriticalSection
GetDiskFreeSpaceExW
EnumCalendarInfoA
MulDiv
FillConsoleOutputCharacterW
ExitThread
GetProcessVersion
SetEndOfFile
GetThreadPriorityBoost
ReadConsoleW
WritePrivateProfileSectionA
Process32Next
GetTempFileNameW
GetFileAttributesExW
CreateMailslotW
GetThreadPriority
DeviceIoControl
GetDiskFreeSpaceW
GetNamedPipeInfo
GetProcessAffinityMask
CreateEventW
GetProfileIntA
WaitForSingleObjectEx
VirtualFreeEx
OutputDebugStringW
GlobalUnWire
LoadLibraryExA
LocalLock
GetTempFileNameA
ReleaseSemaphore
ReadConsoleOutputCharacterA
WriteProfileSectionA
LockFile
GetDiskFreeSpaceExA
AddAtomW
CloseHandle
EnumCalendarInfoExW
CreateDirectoryW
PeekConsoleInputA
HeapWalk
GetCompressedFileSizeW
TlsAlloc
FindResourceW
FindFirstFileExA
GetSystemTimeAdjustment
GetProcessTimes
lstrcatA
FindCloseChangeNotification
GetTempPathW
SetConsoleWindowInfo
DosDateTimeToFileTime
GetProfileSectionW
FreeResource
CreateFileA
GetVersion
GlobalFix
CreateDirectoryA
WriteProfileStringW
FormatMessageW
CreateSemaphoreW
CreateMailslotA
Heap32ListFirst
WriteConsoleA
FlushViewOfFile
SetFileAttributesW
WritePrivateProfileStructA
CommConfigDialogA
GetPrivateProfileSectionNamesA
EnumDateFormatsW
WriteConsoleOutputAttribute
CreateSemaphoreA
MapViewOfFileEx
GetACP
GetDriveTypeA
MoveFileA
FlushFileBuffers
GetProcessHeap
SetWaitableTimer
GetSystemInfo
CopyFileExA
LocalAlloc
UpdateResourceA
GetVersionExA
ReadConsoleInputA
GetEnvironmentVariableA
WriteConsoleOutputCharacterW
FindFirstFileExW
SetConsoleCtrlHandler
SetFileAttributesA
wininet
FtpCreateDirectoryW
SetUrlCacheEntryGroupA
FtpDeleteFileW
GetUrlCacheEntryInfoExA
InternetOpenUrlA
DeleteUrlCacheEntryW
InternetSecurityProtocolToStringW
FtpPutFileW
FindFirstUrlCacheEntryExA
IsUrlCacheEntryExpiredA
GetUrlCacheHeaderData
RunOnceUrlCache
DeleteUrlCacheContainerA
shell32
ShellExecuteW
SHFileOperationW
FreeIconList
SHGetMalloc
SHFreeNameMappings
DuplicateIcon
SHGetSpecialFolderPathA
SheChangeDirExW
ShellExecuteExW
ShellAboutW
ExtractIconExW
SHGetDesktopFolder
RealShellExecuteA
ExtractIconA
SHQueryRecycleBinA
ExtractAssociatedIconA
SHGetDataFromIDListA
SHGetPathFromIDList
ExtractAssociatedIconW
SheGetDirA
SHBrowseForFolderA
ShellAboutA
ExtractIconExA
SHGetPathFromIDListW
SHGetPathFromIDListA
SHAddToRecentDocs
ShellExecuteExA
SHGetSettings
DoEnvironmentSubstA
ExtractAssociatedIconExA
SHFileOperation
SHUpdateRecycleBinIcon
DragQueryFileAorW
DragQueryFileA
SHLoadInProc
SHGetSpecialFolderPathW
gdi32
PlayEnhMetaFile
EnumICMProfilesW
CreateBitmapIndirect
CreateBitmap
EnumFontFamiliesW
CreateDIBPatternBrushPt
GetCharWidth32A
GetKerningPairs
GetTextMetricsA
GetRandomRgn
PolyTextOutW
GetTextColor
CreateHalftonePalette
Pie
IntersectClipRect
GetWindowExtEx
GetObjectA
GetBrushOrgEx
GdiFlush
GdiPlayScript
SetICMProfileW
RectInRegion
GetGraphicsMode
GetTextFaceA
GetPixel
ChoosePixelFormat
SelectClipRgn
Rectangle
FillRgn
GetICMProfileW
GetTextCharset
CreateBrushIndirect
CreateDIBPatternBrush
GetNearestPaletteIndex
SetDIBColorTable
SaveDC
GetRegionData
CreateDIBitmap
AngleArc
GetTextExtentExPointW
SetEnhMetaFileBits
SetBkMode
AddFontResourceA
BeginPath
CreateRectRgnIndirect
GetKerningPairsW
SetWorldTransform
GetMapMode
GetTextMetricsW
DeleteObject
SelectObject
CreateMetaFileA
GetCharWidthW
SetFontEnumeration
GetROP2
ExtEscape
EnumFontFamiliesA
GetObjectType
GetCharABCWidthsFloatA
GetEnhMetaFilePaletteEntries
SetPixel
SetPaletteEntries
PlayMetaFileRecord
GetRasterizerCaps
PolyPolygon
SetRectRgn
Ellipse
SwapBuffers
CancelDC
OffsetViewportOrgEx
RoundRect
CloseMetaFile
UpdateICMRegKeyW
GetTextFaceW
EnableEUDC
CreateEllipticRgnIndirect
ResetDCW
GetGlyphOutlineA
GetSystemPaletteEntries
CheckColorsInGamut
Escape
GetPaletteEntries
LineDDA
RemoveFontResourceA
OffsetWindowOrgEx
GetStockObject
SetSystemPaletteUse
CombineTransform
GetBoundsRect
SetTextJustification
GetNearestColor
CreateFontW
GetObjectW
CreateMetaFileW
CopyMetaFileA
SetMagicColors
GetEnhMetaFileDescriptionA
SetLayout
SetColorAdjustment
DeleteEnhMetaFile
StretchBlt
GetPixelFormat
FlattenPath
SetColorSpace
CreatePolyPolygonRgn
AnimatePalette
EnumObjects
CloseFigure
SetPixelV
PatBlt
CreateSolidBrush
SetViewportExtEx
PolyDraw
MoveToEx
GetEnhMetaFileBits
CreateRectRgn
StartDocA
CreatePatternBrush
GetTextCharsetInfo
GetGlyphOutlineW
ColorCorrectPalette
GetDIBColorTable
WidenPath
CreateEnhMetaFileA
EnumFontsW
SetTextAlign
EndPath
GetWorldTransform
CreateFontA
Polyline
GetMetaFileA
InvertRgn
GetCharABCWidthsA
SetBrushOrgEx
OffsetRgn
DeviceCapabilitiesExW
GetMiterLimit
GdiGetBatchLimit
PolyBezier
RealizePalette
GetColorAdjustment
CreateICA
EnumFontFamiliesExA
RectVisible
GetTextCharacterExtra
BitBlt
GetCharABCWidthsFloatW
ModifyWorldTransform
GetICMProfileA
PolyTextOutA
GetKerningPairsA
GetDeviceCaps
CopyMetaFileW
SetViewportOrgEx
OffsetClipRgn
GetTextExtentPoint32W
CreateEnhMetaFileW
RemoveFontResourceW
ExcludeClipRect
GetClipRgn
GetLayout
GetEnhMetaFileA
GetAspectRatioFilterEx
PlgBlt
DeleteMetaFile
DescribePixelFormat
GetWinMetaFileBits
CreateDiscardableBitmap
GetDCOrgEx
DeleteColorSpace
SetMapperFlags
ExtCreatePen
CreatePenIndirect
AbortPath
GetOutlineTextMetricsA
UpdateColors
GetFontData
CreateRoundRectRgn
SetArcDirection
SetICMProfileA
StretchDIBits
DeviceCapabilitiesExA
GetArcDirection
MaskBlt
UpdateICMRegKeyA
CloseEnhMetaFile
GetCharABCWidthsW
ResetDCA
ScaleViewportExtEx
CreateColorSpaceW
CombineRgn
DeleteDC
SetDIBits
GetBkColor
CreateDIBSection
GetGlyphOutline
PtInRegion
CreateHatchBrush
RestoreDC
AddFontResourceW
LPtoDP
ExtCreateRegion
GetRgnBox
GetCurrentObject
ColorMatchToTarget
SetAbortProc
GetDIBits
PaintRgn
GetBitmapDimensionEx
PolyBezierTo
CreatePen
SetStretchBltMode
SetMiterLimit
SetBitmapDimensionEx
CreateICW
DPtoLP
GetCharWidthA
ExtFloodFill
GetCurrentPositionEx
SelectPalette
CreateCompatibleDC
UnrealizeObject
StrokeAndFillPath
Chord
LineTo
GetBitmapBits
GetFontLanguageInfo
GetViewportExtEx
FillPath
GetMetaFileW
SetPixelFormat
GetStretchBltMode
GetLogColorSpaceW
PtVisible
FrameRgn
GetTextExtentExPointA
GetClipBox
TranslateCharsetInfo
GetCharWidthFloatW
FloodFill
TextOutW
SelectClipPath
GetCharacterPlacementA
SetBitmapBits
CreateColorSpaceA
CreateEllipticRgn
EnumFontFamiliesExW
GdiPlayJournal
GetEnhMetaFileDescriptionW
PolylineTo
GetMetaFileBitsEx
PathToRegion
SetPolyFillMode
TextOutA
CopyEnhMetaFileW
GetSystemPaletteUse
PolyPolyline
SetICMMode
GetPolyFillMode
ExtSelectClipRgn
SetTextCharacterExtra
AbortDoc
GetOutlineTextMetricsW
SetTextColor
EndDoc
DrawEscape
CreatePolygonRgn
GetViewportOrgEx
StartDocW
ExtTextOutW
SetMapMode
EnumFontsA
GetMetaRgn
CreateFontIndirectW
gdiPlaySpoolStream
CreatePalette
GetCharacterPlacementW
EqualRgn
GetCharWidthFloatA
FixBrushOrgEx
SetMetaRgn
PlayMetaFile
PlayEnhMetaFileRecord
GetWindowOrgEx
EndPage
ExtTextOutA
Arc
CreateCompatibleBitmap
GetBkMode
GetEnhMetaFileW
SetGraphicsMode
GetTextExtentPointW
CreateDCA
SetWinMetaFileBits
CreateScalableFontResourceW
CreateScalableFontResourceA
SetBkColor
GetTextAlign
EnumICMProfilesA
StrokePath
GetDeviceGammaRamp
GetCharWidth32W
EnumEnhMetaFile
CreateDCW
GetTextExtentPoint32A
ArcTo
StartPage
GdiPlayDCScript
GetLogColorSpaceA
CopyEnhMetaFileA
SetDeviceGammaRamp
SetROP2
GetColorSpace
CreateFontIndirectA
advapi32
CryptContextAddRef
RegSaveKeyW
CryptEnumProvidersW
CryptEnumProvidersA
RegLoadKeyA
CryptGenKey
CryptGetUserKey
RegDeleteKeyW
LookupSecurityDescriptorPartsA
CryptReleaseContext
LookupPrivilegeNameA
InitializeSecurityDescriptor
RegSetValueA
LookupAccountNameW
CryptAcquireContextA
CreateServiceW
CryptSetProviderExW
RegDeleteKeyA
RegCreateKeyExW
LogonUserA
CryptEnumProviderTypesA
RegFlushKey
ReportEventW
CryptDeriveKey
LogonUserW
RegRestoreKeyA
AbortSystemShutdownW
RevertToSelf
RegReplaceKeyA
RegQueryInfoKeyA
LookupAccountSidA
RegConnectRegistryA
LookupAccountSidW
CryptSignHashA
RegSetKeySecurity
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExW
RegDeleteValueA
RegQueryMultipleValuesW
CryptDecrypt
CryptImportKey
CryptGetKeyParam
CryptSetProviderExA
RegEnumKeyW
CryptGetHashParam
RegDeleteValueW
RegSetValueExA
CryptAcquireContextW
RegQueryValueExA
CryptVerifySignatureW
RegCreateKeyExA
RegCreateKeyW
CryptDestroyKey
RegEnumValueW
RegEnumKeyExA
CryptHashSessionKey
RegOpenKeyExW
CryptSetProvParam
DuplicateToken
CryptSignHashW
CryptDuplicateKey
CryptGetDefaultProviderW
CryptGetDefaultProviderA
RegSetValueExW
CryptGenRandom
RegLoadKeyW
ReportEventA
LookupSecurityDescriptorPartsW
GetUserNameW
StartServiceA
GetUserNameA
CryptSetProviderA
CreateServiceA
RegEnumKeyExW
CryptSetHashParam
RegQueryValueW
CryptDestroyHash
CryptHashData
LookupPrivilegeValueW
InitiateSystemShutdownA
RegSetValueW
LookupPrivilegeDisplayNameA
CryptEncrypt
comdlg32
GetFileTitleA
ChooseFontW
LoadAlterBitmap
GetOpenFileNameA
GetSaveFileNameW
GetSaveFileNameA
PrintDlgW
FindTextA
PageSetupDlgW
Sections
.text Size: 106KB - Virtual size: 105KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 263KB - Virtual size: 262KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 15KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ