Static task
static1
Behavioral task
behavioral1
Sample
37467e2d81b4655493bda09efaaa2c01_JaffaCakes118.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral2
Sample
37467e2d81b4655493bda09efaaa2c01_JaffaCakes118.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
37467e2d81b4655493bda09efaaa2c01_JaffaCakes118
-
Size
409KB
-
MD5
37467e2d81b4655493bda09efaaa2c01
-
SHA1
a37e06521ef431cf01af1db64c1b35113438bc21
-
SHA256
df454081b930cb4cd9ca8137b24a724141e2bdfbd79e09835d03bc8751f36c86
-
SHA512
677960225acd959fd12dc3932885b44a2375da1a9c1c6c88786b2fb86b956fcf8a984a19f9d09750cb071d23281811a5899e2b7f65e2daf7be30d6ba97fb1adb
-
SSDEEP
6144:C24vULfQsr5zmCebRgfVoARAvBcoj+DMbI1WggyUmfQLSvHrrfZ7vLwu:C24cLYsrhmPbRmCCQuU+DMkIy3LBvL
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 37467e2d81b4655493bda09efaaa2c01_JaffaCakes118
Files
-
37467e2d81b4655493bda09efaaa2c01_JaffaCakes118.exe windows:4 windows x86 arch:x86
88df536058e06dda91b697a30b277850
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
Heap32First
CreateRemoteThread
FlushInstructionCache
GetMailslotInfo
WriteConsoleInputW
GetComputerNameW
CopyFileExA
FillConsoleOutputAttribute
FlushConsoleInputBuffer
SetConsoleOutputCP
GetPrivateProfileIntA
GetPrivateProfileStringW
WriteConsoleOutputCharacterW
GetWindowsDirectoryA
WriteFile
SetConsoleTitleA
InterlockedCompareExchange
ReadConsoleA
HeapCompact
OpenWaitableTimerA
OpenMutexW
GetStringTypeW
GlobalFindAtomW
lstrcpy
GetCurrentDirectoryW
MoveFileW
advapi32
LookupPrivilegeNameW
RevertToSelf
DuplicateToken
RegQueryInfoKeyW
CryptAcquireContextW
ReportEventA
CryptDuplicateKey
DuplicateTokenEx
RegSetValueA
RegCloseKey
RegFlushKey
RegQueryValueA
AbortSystemShutdownA
CryptReleaseContext
CryptSetProviderExA
RegQueryMultipleValuesA
InitiateSystemShutdownW
RegDeleteKeyW
RegSetValueExW
RegSaveKeyA
RegEnumValueA
CryptSetProviderA
RegEnumValueW
CryptGetDefaultProviderA
CryptEnumProviderTypesW
RegConnectRegistryW
CryptGetProvParam
CryptExportKey
LookupAccountNameA
RegNotifyChangeKeyValue
CryptDestroyKey
RegOpenKeyA
RegQueryValueExA
CryptDecrypt
CryptSetKeyParam
CryptGenKey
RegQueryInfoKeyA
LogonUserA
RegSetValueExA
RegOpenKeyExA
RegSetValueW
CryptSetProvParam
RegCreateKeyA
RegRestoreKeyW
CryptAcquireContextA
RegConnectRegistryA
CryptDestroyHash
InitiateSystemShutdownA
RegRestoreKeyA
CryptGenRandom
LookupPrivilegeDisplayNameW
RegCreateKeyExA
CryptHashSessionKey
LookupAccountSidW
RegQueryMultipleValuesW
RegDeleteKeyA
RegOpenKeyExW
CryptDuplicateHash
RegEnumKeyExW
LookupPrivilegeValueW
CreateServiceW
StartServiceW
CryptGetDefaultProviderW
RegDeleteValueW
LookupAccountNameW
RegLoadKeyA
CryptContextAddRef
RegEnumKeyA
LogonUserW
CryptEnumProviderTypesA
RegEnumKeyW
CryptSignHashW
gdi32
SwapBuffers
GetTextFaceA
GetCharWidthA
EnumMetaFile
GetGlyphOutlineA
SetFontEnumeration
StrokeAndFillPath
DeleteMetaFile
GetPaletteEntries
GetWindowExtEx
SetPixel
GetTextExtentPointA
EnumFontFamiliesW
GetStockObject
GetColorAdjustment
SetPolyFillMode
FloodFill
GetCharWidthW
CreateDCA
SetICMMode
GetDeviceCaps
GetWorldTransform
StartDocA
GetWindowOrgEx
SetRectRgn
RemoveFontResourceA
SetArcDirection
CreateFontIndirectA
StretchDIBits
CreatePen
GetTextExtentExPointW
SetAbortProc
GetLogColorSpaceA
AddFontResourceW
PathToRegion
GetCharWidthFloatW
GetEnhMetaFileDescriptionW
GetMetaFileBitsEx
AbortPath
CreateCompatibleDC
GetTextColor
TextOutA
GdiGetBatchLimit
DeleteDC
GetCharacterPlacementW
CreateMetaFileA
GetTextAlign
SetViewportExtEx
SetTextColor
BeginPath
PolyTextOutA
GetICMProfileW
SetColorAdjustment
ScaleViewportExtEx
GetTextExtentPointW
GetBkMode
GetSystemPaletteUse
GetBitmapDimensionEx
GetPixelFormat
GetCurrentPositionEx
SetDIBitsToDevice
CloseMetaFile
GetClipRgn
GetClipBox
GetViewportExtEx
SetBrushOrgEx
GetTextMetricsW
CopyEnhMetaFileW
GetObjectType
Chord
EndPath
CreateICW
CreateFontA
GetMiterLimit
SetMetaFileBitsEx
CopyMetaFileW
CreatePalette
GdiPlayJournal
ExtCreatePen
ResetDCW
ScaleWindowExtEx
GetTextExtentExPointA
Escape
SetPixelV
ColorCorrectPalette
OffsetWindowOrgEx
PolyBezier
PlayEnhMetaFileRecord
EnumFontsW
GetOutlineTextMetricsA
CreateEllipticRgn
GetGlyphOutlineW
SetBoundsRect
SetPaletteEntries
Pie
PolyPolygon
CopyMetaFileA
EnumFontFamiliesA
SetDIBColorTable
GdiSetBatchLimit
GetEnhMetaFileBits
PatBlt
GdiPlayDCScript
CreateScalableFontResourceA
CreateDIBitmap
GetGlyphOutline
PlgBlt
SaveDC
CreateRoundRectRgn
DrawEscape
GetMetaFileA
ExcludeClipRect
GetCharWidth32A
GetBoundsRect
UnrealizeObject
CreateHatchBrush
CloseEnhMetaFile
GetStretchBltMode
GetAspectRatioFilterEx
CreateMetaFileW
CreatePenIndirect
CreateColorSpaceA
GetCurrentObject
CreateFontW
PtInRegion
GetICMProfileA
SetTextJustification
ExtCreateRegion
CreateBitmapIndirect
CombineTransform
CreateRectRgn
ExtSelectClipRgn
GetTextExtentPoint32A
SetBitmapDimensionEx
SetColorSpace
GetCharABCWidthsA
SelectObject
GetCharWidth32W
GetKerningPairsW
SelectClipRgn
GetEnhMetaFileHeader
CheckColorsInGamut
SetPixelFormat
GetMapMode
EqualRgn
CreateICA
SetWinMetaFileBits
PolyBezierTo
UpdateICMRegKeyW
CreateHalftonePalette
GetWinMetaFileBits
GetMetaFileW
PtVisible
SetTextAlign
SetWindowOrgEx
EndPage
GdiFlush
GetGraphicsMode
SetBkColor
wininet
IncrementUrlCacheHeaderData
InternetGetCertByURL
InternetReadFileExW
InternetSetCookieW
FindNextUrlCacheContainerW
FtpRenameFileW
InternetDialW
FtpRemoveDirectoryA
InternetShowSecurityInfoByURLW
UnlockUrlCacheEntryFile
InternetSetOptionExW
RunOnceUrlCache
InternetWriteFileExA
DeleteUrlCacheGroup
RetrieveUrlCacheEntryFileW
InternetOpenUrlA
InternetSecurityProtocolToStringA
CreateUrlCacheEntryA
InternetConfirmZoneCrossingW
ShowX509EncodedCertificate
FtpOpenFileW
IsHostInProxyBypassList
FindFirstUrlCacheGroup
InternetGetConnectedStateExW
UnlockUrlCacheEntryFileA
GopherGetLocatorTypeW
FtpGetFileEx
InternetSetOptionW
FindFirstUrlCacheEntryExW
InternetGetCookieW
RetrieveUrlCacheEntryFileA
InternetSetFilePointer
FtpSetCurrentDirectoryA
InternetCheckConnectionW
DeleteUrlCacheEntryA
DeleteUrlCacheEntryW
FtpGetFileSize
GetUrlCacheEntryInfoA
HttpOpenRequestW
LoadUrlCacheContent
FtpDeleteFileA
FtpSetCurrentDirectoryW
InternetOpenUrlW
FtpRenameFileA
InternetCrackUrlW
InternetConnectA
InternetCreateUrlW
SetUrlCacheGroupAttributeA
InternetAlgIdToStringW
ShowCertificate
RegisterUrlCacheNotification
FindNextUrlCacheEntryA
ShowClientAuthCerts
CreateUrlCacheContainerW
InternetGetCertByURLA
InternetGetCookieA
InternetSetOptionA
FtpCreateDirectoryW
InternetQueryDataAvailable
InternetDialA
InternetCloseHandle
FindNextUrlCacheEntryW
HttpQueryInfoA
HttpSendRequestW
InternetQueryFortezzaStatus
GetUrlCacheEntryInfoW
InternetTimeFromSystemTime
InternetAttemptConnect
InternetWriteFile
InternetGetLastResponseInfoW
GopherOpenFileA
HttpEndRequestA
InternetGetConnectedStateExA
RetrieveUrlCacheEntryStreamA
GetUrlCacheHeaderData
HttpSendRequestA
FindNextUrlCacheEntryExA
InternetGoOnline
HttpOpenRequestA
InternetTimeToSystemTimeA
InternetReadFileExA
InternetQueryOptionA
CreateUrlCacheEntryW
SetUrlCacheEntryInfoW
UpdateUrlCacheContentPath
InternetCreateUrlA
InternetCombineUrlW
FindFirstUrlCacheEntryExA
ReadUrlCacheEntryStream
HttpQueryInfoW
InternetShowSecurityInfoByURLA
InternetTimeFromSystemTimeA
FindFirstUrlCacheEntryW
FtpDeleteFileW
InternetFindNextFileW
InternetHangUp
UnlockUrlCacheEntryStream
InternetDial
FtpCommandA
FindNextUrlCacheContainerA
CreateUrlCacheGroup
HttpEndRequestW
InternetAutodial
InternetWriteFileExW
GopherGetLocatorTypeA
InternetSetCookieA
FindCloseUrlCache
InternetConfirmZoneCrossingA
UrlZonesDetach
GetUrlCacheConfigInfoW
UnlockUrlCacheEntryFileW
InternetErrorDlg
SetUrlCacheEntryInfoA
GetUrlCacheGroupAttributeW
FtpCreateDirectoryA
InternetGetLastResponseInfoA
GopherGetAttributeA
RetrieveUrlCacheEntryStreamW
InternetOpenW
SetUrlCacheEntryGroupA
SetUrlCacheConfigInfoA
InternetCanonicalizeUrlW
FindFirstUrlCacheEntryA
GetUrlCacheEntryInfoExA
InternetConfirmZoneCrossing
InternetSetDialStateA
InternetOpenA
FreeUrlCacheSpaceA
FindFirstUrlCacheContainerW
FindNextUrlCacheEntryExW
FtpCommandW
DeleteUrlCacheEntry
FreeUrlCacheSpaceW
SetUrlCacheEntryGroup
InternetGoOnlineA
FtpPutFileW
GopherOpenFileW
FtpOpenFileA
InternetUnlockRequestFile
InternetCheckConnectionA
SetUrlCacheEntryGroupW
InternetSetDialState
InternetFindNextFileA
FindNextUrlCacheGroup
FtpFindFirstFileA
GopherFindFirstFileA
DeleteUrlCacheContainerA
InternetSetOptionExA
InternetSecurityProtocolToStringW
InternetAlgIdToStringA
GopherCreateLocatorA
InternetAutodialHangup
GetUrlCacheGroupAttributeA
SetUrlCacheConfigInfoW
GopherFindFirstFileW
DeleteUrlCacheContainerW
InternetGoOnlineW
SetUrlCacheHeaderData
CommitUrlCacheEntryW
GopherGetAttributeW
FindFirstUrlCacheContainerA
InternetTimeToSystemTimeW
HttpAddRequestHeadersA
InternetGetConnectedState
ShowSecurityInfo
InternetSetDialStateW
FtpFindFirstFileW
HttpCheckDavCompliance
InternetCombineUrlA
FtpGetFileA
DeleteIE3Cache
FtpGetCurrentDirectoryA
InternetTimeFromSystemTimeW
HttpSendRequestExA
GetUrlCacheEntryInfoExW
HttpAddRequestHeadersW
FtpPutFileA
FtpRemoveDirectoryW
InternetConnectW
FtpGetFileW
IsUrlCacheEntryExpiredA
DetectAutoProxyUrl
InternetFortezzaCommand
InternetCanonicalizeUrlA
ResumeSuspendedDownload
GetUrlCacheConfigInfoA
HttpSendRequestExW
SetUrlCacheGroupAttributeW
InternetQueryOptionW
InternetInitializeAutoProxyDll
FtpGetCurrentDirectoryW
InternetGetConnectedStateEx
GopherCreateLocatorW
InternetTimeToSystemTime
InternetCrackUrlA
CommitUrlCacheEntryA
InternetReadFile
CreateUrlCacheContainerA
InternetShowSecurityInfoByURL
shell32
RealShellExecuteExW
ExtractIconEx
user32
IsDlgButtonChecked
CreateDialogParamW
SendDlgItemMessageW
UnregisterDeviceNotification
SetWindowsHookA
PostQuitMessage
GetKeyboardType
TabbedTextOutA
GetDCEx
RemovePropW
GetQueueStatus
RegisterWindowMessageW
EnumWindowStationsW
GetKeyNameTextA
SetSystemCursor
DdeImpersonateClient
DeferWindowPos
DrawTextW
GetClassInfoExW
DrawTextA
ToUnicode
GetScrollBarInfo
GetMessageW
IsWindowVisible
GetMessageTime
FreeDDElParam
SetCaretPos
UnpackDDElParam
GetGuiResources
SetLastErrorEx
SubtractRect
SetParent
SetScrollRange
GetMenuItemInfoW
UpdateWindow
MapWindowPoints
DestroyMenu
CreateIcon
ScreenToClient
RedrawWindow
AnyPopup
GetKeyNameTextW
WINNLSEnableIME
LoadStringA
DdeCmpStringHandles
SetClipboardData
DdeGetData
ShowScrollBar
GetMenuItemID
DdeQueryStringA
LoadAcceleratorsA
GetTabbedTextExtentW
DestroyCursor
SetProcessDefaultLayout
TrackPopupMenu
IsChild
GetClassWord
MoveWindow
KillTimer
ChangeDisplaySettingsExA
DrawFrameControl
EnumDisplaySettingsExW
InvalidateRgn
HideCaret
InsertMenuItemW
InSendMessage
PackDDElParam
EnumDesktopsW
GetAncestor
LoadCursorFromFileW
SetWindowsHookExA
DefDlgProcW
BlockInput
DeleteMenu
NotifyWinEvent
SendNotifyMessageW
GetClipboardData
CreateIconIndirect
EnumClipboardFormats
EnableWindow
CharLowerA
OpenIcon
GetDC
FlashWindowEx
EnableMenuItem
PostThreadMessageA
GetKeyboardLayoutNameA
GetClassInfoA
GetClipboardSequenceNumber
DrawAnimatedRects
EnumDisplaySettingsW
DdeGetLastError
GetMenuStringW
GetMonitorInfoW
GetClassNameW
DefWindowProcA
GetWindowRgn
MsgWaitForMultipleObjects
wvsprintfA
OemToCharBuffA
RegisterClassW
SetWindowsHookW
GetWindowTextW
EnumDisplayDevicesW
GetWindowContextHelpId
SetWindowsHookExW
LoadBitmapA
SetMenu
CreateCursor
EndDeferWindowPos
GetForegroundWindow
DrawIconEx
SendInput
CopyImage
DdeQueryNextServer
RegisterHotKey
GetPriorityClipboardFormat
LoadMenuIndirectA
DdeClientTransaction
WINNLSGetIMEHotkey
DdeKeepStringHandle
GetPropW
GetDlgItemTextW
IsWindowUnicode
DialogBoxParamW
CallNextHookEx
GetUserObjectSecurity
GetDlgCtrlID
EnumPropsExW
LoadStringW
FindWindowW
DlgDirSelectExW
MessageBeep
ToUnicodeEx
CheckDlgButton
ExitWindowsEx
MessageBoxW
DlgDirSelectComboBoxExW
ExcludeUpdateRgn
DdeDisconnectList
SetTimer
DdeAddData
CallMsgFilterW
ChildWindowFromPoint
DrawFocusRect
SetWindowWord
IsClipboardFormatAvailable
DestroyAcceleratorTable
DdeCreateStringHandleA
LoadCursorFromFileA
WaitMessage
SetUserObjectInformationA
SwitchDesktop
MessageBoxIndirectA
ModifyMenuW
GetWindowRect
SetClassLongA
GetTabbedTextExtentA
LoadCursorW
ChangeClipboardChain
SetRect
SetMenuContextHelpId
SetDebugErrorLevel
MapVirtualKeyW
RemovePropA
IsDialogMessageA
MenuItemFromPoint
ValidateRect
GetDoubleClickTime
MonitorFromPoint
DefMDIChildProcA
CharUpperW
GetCursorInfo
MapDialogRect
GetSysColorBrush
ActivateKeyboardLayout
IsMenu
GetWindowDC
DdeDisconnect
GetClientRect
CascadeWindows
ShowWindow
CreateWindowExW
AttachThreadInput
GetShellWindow
LoadMenuIndirectW
RegisterDeviceNotificationW
LoadCursorA
EditWndProc
CharToOemBuffA
SetCaretBlinkTime
GetMenuStringA
SendNotifyMessageA
CopyRect
SetDlgItemTextA
GetWindowTextLengthA
SetClipboardViewer
CheckRadioButton
OffsetRect
OemToCharBuffW
PostMessageW
GetComboBoxInfo
DdeInitializeA
GetPropA
PostMessageA
SystemParametersInfoA
GetKeyboardState
CreatePopupMenu
CloseClipboard
IsDialogMessage
ToAsciiEx
SendMessageA
IsZoomed
SetCapture
LoadImageA
OemToCharA
GetInputDesktop
CharNextW
MessageBoxExA
DispatchMessageW
ImpersonateDdeClientWindow
DdeQueryConvInfo
PeekMessageW
CreateMDIWindowW
SetWindowPlacement
InvalidateRect
VkKeyScanExW
SetWinEventHook
EnumDisplayDevicesA
EnableScrollBar
DdeFreeStringHandle
CreateCaret
GetTitleBarInfo
DdeUninitialize
MapVirtualKeyA
SetDlgItemInt
GetMenu
UnhookWinEvent
CreateIconFromResourceEx
CharPrevW
GetDesktopWindow
DragObject
GetMenuItemRect
BeginDeferWindowPos
IsCharUpperA
GetActiveWindow
TrackMouseEvent
CloseWindow
GrayStringA
IsCharAlphaNumericA
wvsprintfW
LoadKeyboardLayoutA
CharUpperBuffA
RealChildWindowFromPoint
ChangeDisplaySettingsExW
EnumDesktopWindows
DlgDirListA
CreateMenu
AdjustWindowRectEx
SetMenuItemInfoW
CharPrevExA
GetMenuCheckMarkDimensions
OpenDesktopA
DrawStateA
CharLowerW
GetMenuState
SetClassLongW
EnumPropsA
CopyAcceleratorTableA
SetFocus
SetWindowTextA
SetClassWord
SetMessageQueue
CharNextExA
IsCharAlphaNumericW
PostThreadMessageW
GetSubMenu
GetScrollRange
SetMessageExtraInfo
MonitorFromRect
DdeInitializeW
GetKBCodePage
ChangeMenuA
DrawTextExW
PeekMessageA
DdeAccessData
DrawTextExA
EnumDisplaySettingsA
MessageBoxA
GetClipboardOwner
GetWindowModuleFileNameW
GetWindowPlacement
FlashWindow
GetCursorPos
DdeConnect
DdeReconnect
GetUpdateRect
DdePostAdvise
GetSystemMenu
wsprintfA
GetListBoxInfo
ReleaseDC
CreateAcceleratorTableA
GetMenuInfo
GetNextDlgTabItem
VkKeyScanExA
GetMenuDefaultItem
MessageBoxIndirectW
SetDoubleClickTime
SetScrollPos
CharToOemA
InsertMenuW
IsDialogMessageW
GetClipboardFormatNameW
CallMsgFilter
DrawFrame
GetKeyboardLayout
CallMsgFilterA
EndTask
DefFrameProcW
RegisterDeviceNotificationA
InvertRect
GetUserObjectInformationA
CopyAcceleratorTableW
GrayStringW
DrawEdge
EnumWindowStationsA
DefDlgProcA
CreateWindowStationA
SetSysColors
DrawCaption
EnumWindows
LookupIconIdFromDirectory
RegisterClassExW
WinHelpW
GetWindowModuleFileNameA
EnumDesktopsA
TranslateAcceleratorW
GetWindowThreadProcessId
GetParent
GetMenuBarInfo
FrameRect
SetProcessWindowStation
MonitorFromWindow
UnhookWindowsHook
RegisterClassExA
GetUserObjectInformationW
SetMenuInfo
CharPrevA
IsWindowEnabled
GetCaretPos
ChangeDisplaySettingsW
SetMenuItemBitmaps
DestroyCaret
SendMessageTimeoutW
CharToOemW
DlgDirListComboBoxW
GetClassLongA
Sections
.text Size: 94KB - Virtual size: 93KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 296KB - Virtual size: 295KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE