Behavioral task
behavioral1
Sample
8224e419f8a5ca2320d8b0a8ede71a17_JaffaCakes118.exe
Resource
win7-20240729-en
windows7-x64
Behavioral task
behavioral2
Sample
8224e419f8a5ca2320d8b0a8ede71a17_JaffaCakes118.exe
Resource
win10v2004-20240730-en
windows10-2004-x64
General
-
Target
8224e419f8a5ca2320d8b0a8ede71a17_JaffaCakes118
-
Size
138KB
-
MD5
8224e419f8a5ca2320d8b0a8ede71a17
-
SHA1
3216598cc7a507767c94bf05c3c849e4ae3cd331
-
SHA256
13e56673046ec8083be5a023634f536ffc126efaa8e79fa667582cd9144bbaa6
-
SHA512
cd6da62bd4fb1ee3dde4025d6610ac1f175923b735a71e8e820aeba79fb2e0b4989fab96337a83277c3fbb02137f6e98af989abadca3c9731222cd162993540c
-
SSDEEP
3072:K8L4xWQrJGFp7Jw96LevYXCwapCUGsk781ll9pV/l9e9z:RpdY6LeY7wj9pRlc9
Malware Config
Signatures
-
resource yara_rule sample vmprotect -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8224e419f8a5ca2320d8b0a8ede71a17_JaffaCakes118
Files
-
8224e419f8a5ca2320d8b0a8ede71a17_JaffaCakes118.exe windows:5 windows x86 arch:x86
66ae512db5a436c60064320b24ce92f2
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
DrawCaption
CreateWindowStationW
CopyIcon
InsertMenuA
GetPriorityClipboardFormat
DdeImpersonateClient
DefWindowProcW
GetWindowWord
IsWindowVisible
DdeCreateStringHandleW
DdeCreateDataHandle
SetFocus
ChangeClipboardChain
DispatchMessageA
BroadcastSystemMessageA
SetShellWindow
MonitorFromWindow
DdeGetLastError
SetWindowWord
EndMenu
SetTimer
OemToCharW
MessageBoxIndirectW
EnumDesktopsA
MessageBoxW
ChangeMenuW
CreateCursor
GetScrollPos
InsertMenuItemA
GetClipboardData
MapWindowPoints
GetDC
SendIMEMessageExW
IsCharAlphaA
RealGetWindowClass
DdeConnectList
GetLastActivePopup
IsCharUpperW
FindWindowA
DdeConnect
LoadMenuA
DdeGetData
ToUnicode
CharPrevA
GetWindow
SetDoubleClickTime
EnumPropsExW
SetMenuDefaultItem
DdeQueryStringW
DrawFrame
CreatePopupMenu
SendInput
GetMessageW
SetThreadDesktop
GetAsyncKeyState
GetWindowTextW
CreateIconFromResource
CountClipboardFormats
GetWindowContextHelpId
GetMonitorInfoA
CloseWindow
DialogBoxParamW
ClientToScreen
OpenClipboard
LoadMenuW
AdjustWindowRect
GetMenuState
SetScrollRange
DeleteMenu
ShowScrollBar
MessageBoxExW
ToAscii
IsWindowEnabled
GetMessageExtraInfo
SetLastErrorEx
EnumDisplaySettingsW
GetMenuItemID
GetUpdateRgn
FindWindowW
MoveWindow
UnpackDDElParam
DialogBoxParamA
UnregisterClassW
TrackPopupMenu
GetComboBoxInfo
GetWindowModuleFileNameW
IsZoomed
GetWindowLongA
UnregisterHotKey
DdeDisconnect
SwapMouseButton
ScrollDC
TranslateAcceleratorA
CheckMenuRadioItem
TrackMouseEvent
GetAltTabInfo
SetWindowPos
CreateIcon
GetDlgItemInt
DdeNameService
GetDlgItemTextW
GetWindowInfo
CharPrevExA
GetMenuStringW
GetWindowPlacement
CreateWindowExA
RegisterHotKey
InvertRect
RegisterWindowMessageA
MapDialogRect
CreateAcceleratorTableW
ChangeDisplaySettingsExW
LookupIconIdFromDirectoryEx
ClipCursor
EndDialog
SetMessageExtraInfo
GetClientRect
CharToOemW
GetInputState
GetUpdateRect
DrawTextW
IsIconic
GetActiveWindow
SetKeyboardState
DdeAccessData
IsChild
DdeQueryNextServer
ExcludeUpdateRgn
CascadeChildWindows
SubtractRect
RegisterClassA
GetCursorInfo
SetWindowContextHelpId
GetCapture
ShowWindow
DrawTextExA
FrameRect
FillRect
GetKeyboardState
CharLowerBuffW
GetDialogBaseUnits
PeekMessageW
LoadImageW
ModifyMenuW
MapVirtualKeyA
DestroyCaret
RemovePropW
EnumDisplaySettingsExW
SetWindowsHookW
PaintDesktop
PeekMessageA
CreateDesktopA
SetMenuContextHelpId
RemoveMenu
SetWindowTextA
VkKeyScanA
BroadcastSystemMessageW
ChangeMenuA
LoadBitmapW
DdeEnableCallback
EmptyClipboard
GetClipCursor
DdeClientTransaction
SendDlgItemMessageW
GetInputDesktop
ScrollWindowEx
WINNLSEnableIME
WaitMessage
DlgDirListComboBoxW
ArrangeIconicWindows
DestroyMenu
FindWindowExA
GetWindowTextA
ReuseDDElParam
DestroyIcon
LoadStringA
CloseClipboard
SendMessageCallbackA
GetQueueStatus
ReleaseDC
GetClassInfoA
GetClipboardViewer
HiliteMenuItem
SetParent
GetSubMenu
SetCaretPos
DdeSetQualityOfService
ReplyMessage
WinHelpA
LookupIconIdFromDirectory
GetClipboardOwner
SetUserObjectSecurity
GetDCEx
InvalidateRgn
DialogBoxIndirectParamW
EnumPropsW
CreateDialogParamA
EnumDesktopWindows
DispatchMessageW
IsCharUpperA
GetSystemMenu
IsRectEmpty
SetPropA
SetWindowRgn
ToUnicodeEx
RegisterClipboardFormatA
InternalGetWindowText
SetWindowsHookA
DlgDirListComboBoxA
GetMenuCheckMarkDimensions
CreateDialogIndirectParamW
RemovePropA
LoadImageA
InflateRect
GetMessageA
GetGUIThreadInfo
RegisterClassExA
EndPaint
ValidateRgn
GetUserObjectSecurity
CreateWindowExW
GetProcessDefaultLayout
SetProcessWindowStation
TranslateAcceleratorW
SetMessageQueue
DdeCreateStringHandleA
IsDialogMessageW
GetClassWord
CallNextHookEx
CharToOemA
GetNextDlgTabItem
NotifyWinEvent
SetMenuItemInfoA
LoadKeyboardLayoutA
GetClassNameA
SendMessageA
SendDlgItemMessageA
ScrollWindow
CharNextA
SetWindowLongW
IsCharAlphaNumericW
SetCursorPos
DragDetect
DdeInitializeW
LoadCursorA
DrawTextA
TabbedTextOutA
SetClipboardViewer
DdePostAdvise
CreateMDIWindowA
CreateDialogIndirectParamA
GetListBoxInfo
SetUserObjectInformationA
EnumDesktopsW
IsCharLowerA
CharNextW
OemKeyScan
CharLowerA
RegisterDeviceNotificationA
ShowWindowAsync
DragObject
MapVirtualKeyW
DrawIcon
GetShellWindow
CopyAcceleratorTableA
UnloadKeyboardLayout
PostThreadMessageA
GetNextDlgGroupItem
DdeSetUserHandle
InSendMessage
CharPrevW
GetMessagePos
SetSystemCursor
IsWindowUnicode
GetClipboardSequenceNumber
WindowFromPoint
CharToOemBuffW
UnhookWindowsHookEx
CreateIconIndirect
SetWindowTextW
CallMsgFilter
KillTimer
GetMenu
SendMessageTimeoutA
DdeKeepStringHandle
TranslateMessage
DrawIconEx
SetWinEventHook
CopyImage
MonitorFromPoint
BringWindowToTop
WindowFromDC
DdeUnaccessData
GetUserObjectInformationW
LoadCursorFromFileW
DefMDIChildProcW
CharLowerBuffA
BeginDeferWindowPos
GetDesktopWindow
GetCursorPos
BroadcastSystemMessage
LockWindowUpdate
GetKeyNameTextA
SendIMEMessageExA
LoadCursorFromFileA
DdeCmpStringHandles
FlashWindow
EnumPropsA
SystemParametersInfoA
SystemParametersInfoW
DlgDirListW
GetKeyState
SetCapture
MessageBoxExA
RegisterClipboardFormatW
CreateAcceleratorTableA
SetDlgItemTextW
EnumDisplayMonitors
GetPropW
GetKeyboardLayoutNameW
GetThreadDesktop
GetCaretPos
DdeInitializeA
BlockInput
LoadMenuIndirectA
OpenWindowStationW
GetCursor
AdjustWindowRectEx
FlashWindowEx
EnumDisplayDevicesW
CreateWindowStationA
GetPropA
DrawFocusRect
CharNextExA
CallMsgFilterW
EnumWindowStationsW
WaitForInputIdle
CascadeWindows
ReleaseCapture
CloseDesktop
HideCaret
EndTask
LoadAcceleratorsW
SetMenu
GetForegroundWindow
DefDlgProcW
IsClipboardFormatAvailable
DestroyWindow
DefMDIChildProcA
CheckDlgButton
DdeDisconnectList
CharUpperA
IsDialogMessageA
SetClassLongA
GetClassInfoW
DestroyAcceleratorTable
DrawAnimatedRects
ToAsciiEx
DlgDirSelectExW
ChangeDisplaySettingsA
IsWindow
GetMenuItemRect
CopyAcceleratorTableW
SetDlgItemInt
MessageBoxIndirectA
LoadKeyboardLayoutW
IsCharLowerW
GetDlgCtrlID
CharUpperBuffA
CheckMenuItem
GetWindowThreadProcessId
RegisterClassExW
SetClipboardData
RealChildWindowFromPoint
CallMsgFilterA
GetMenuStringA
ValidateRect
ImpersonateDdeClientWindow
GetTitleBarInfo
UnregisterDeviceNotification
GetMessageTime
SetScrollInfo
GetTabbedTextExtentW
InSendMessageEx
GetClassInfoExA
MenuItemFromPoint
GetSysColor
EnumWindowStationsA
CreateDesktopW
MapVirtualKeyExW
GetIconInfo
TabbedTextOutW
kernel32
ReadConsoleOutputA
GetPrivateProfileIntA
MoveFileExA
GetProcessShutdownParameters
EnumSystemCodePagesW
GetConsoleTitleW
CreateFileW
ReadProcessMemory
GetEnvironmentStrings
Heap32First
SetCurrentDirectoryW
InitializeCriticalSectionAndSpinCount
LoadModule
WriteFileEx
GlobalCompact
CreateEventA
GetFileAttributesA
SetStdHandle
Module32First
GetPrivateProfileSectionA
SetConsoleCP
MoveFileExW
QueryPerformanceCounter
CreateThread
SetThreadPriorityBoost
WritePrivateProfileStringA
OpenEventW
GetEnvironmentStringsW
LocalCompact
SetFileAttributesW
lstrlenA
CreateNamedPipeW
LoadLibraryA
BackupWrite
SetHandleCount
OpenFile
FillConsoleOutputAttribute
GetNumberOfConsoleInputEvents
WaitForMultipleObjects
GetProcessPriorityBoost
FindNextFileA
GetNamedPipeHandleStateA
SetConsoleTextAttribute
GetMailslotInfo
PeekConsoleInputW
GetThreadSelectorEntry
WriteConsoleInputA
CreateFileA
FindResourceExW
RequestWakeupLatency
GetComputerNameW
WriteConsoleA
MultiByteToWideChar
SetSystemTimeAdjustment
LocalAlloc
WriteConsoleOutputCharacterW
WaitForSingleObject
GetPrivateProfileStructW
GlobalAddAtomA
GetCurrentThread
GetVersionExA
WritePrivateProfileStructA
GetFullPathNameA
VirtualProtect
GetLargestConsoleWindowSize
ResetEvent
GetProcessVersion
GetLogicalDriveStringsW
UnhandledExceptionFilter
lstrcpyA
IsBadHugeWritePtr
ReadConsoleOutputW
GetSystemInfo
SetThreadContext
lstrcpynW
OpenWaitableTimerA
MapViewOfFileEx
TlsSetValue
ResumeThread
GetACP
GetConsoleMode
HeapCreate
GetLogicalDriveStringsA
SetComputerNameW
lstrcmp
GetStringTypeA
GetDriveTypeW
ReleaseSemaphore
GetUserDefaultLangID
CompareFileTime
GetEnvironmentVariableW
lstrcpy
MoveFileW
Heap32ListFirst
FindFirstFileExW
GlobalFree
LCMapStringW
lstrlen
CreateToolhelp32Snapshot
SetThreadExecutionState
ScrollConsoleScreenBufferA
EnumResourceNamesA
FindAtomA
EnumSystemLocalesW
TerminateThread
ConvertDefaultLocale
GlobalFindAtomW
FlushViewOfFile
CreateNamedPipeA
DisconnectNamedPipe
WriteConsoleOutputA
ScrollConsoleScreenBufferW
EnumDateFormatsA
OpenMutexW
ExpandEnvironmentStringsA
GlobalFlags
QueueUserAPC
Sleep
FindNextFileW
CreateDirectoryW
IsValidLocale
SetThreadAffinityMask
SetConsoleScreenBufferSize
WaitNamedPipeW
FileTimeToLocalFileTime
GetFileTime
SetConsoleActiveScreenBuffer
GetWindowsDirectoryA
GetBinaryTypeW
HeapUnlock
LoadLibraryExA
Heap32ListNext
QueryPerformanceFrequency
MulDiv
FlushFileBuffers
VirtualAlloc
FindNextChangeNotification
GetDevicePowerState
CancelDeviceWakeupRequest
WritePrivateProfileStringW
GetTempPathA
ReadConsoleA
lstrcatA
lstrcmpA
GetDriveTypeA
DosDateTimeToFileTime
CreateFiber
SystemTimeToTzSpecificLocalTime
LocalUnlock
EnumCalendarInfoExW
GetFullPathNameW
GetAtomNameW
SwitchToThread
GetPrivateProfileStructA
TlsAlloc
GetPrivateProfileSectionNamesW
FlushInstructionCache
EnumSystemLocalesA
GetAtomNameA
GetFileAttributesW
SetMessageWaitingIndicator
GetStdHandle
GetProcessHeaps
VirtualAllocEx
CreateProcessW
TlsFree
SetConsoleOutputCP
WaitForMultipleObjectsEx
GetExitCodeProcess
LockFile
GetFileInformationByHandle
TransactNamedPipe
FormatMessageA
SetConsoleCursorPosition
PulseEvent
GlobalFindAtomA
GetDiskFreeSpaceExW
FindFirstFileA
ReadFile
GetComputerNameA
CreateDirectoryExW
LockFileEx
RemoveDirectoryA
DeleteFiber
GetPrivateProfileStringW
SetVolumeLabelW
GetDateFormatA
SetVolumeLabelA
GetThreadContext
GetProcessWorkingSetSize
SetEnvironmentVariableA
SetLastError
ExpandEnvironmentStringsW
TerminateProcess
FillConsoleOutputCharacterA
VirtualProtectEx
GetStringTypeExW
GetBinaryType
GetStringTypeW
EnumResourceLanguagesA
GetFileAttributesExA
GlobalDeleteAtom
SetNamedPipeHandleState
GetModuleFileNameW
GetDateFormatW
CreateRemoteThread
lstrcpyW
SetFileAttributesA
EnumResourceTypesA
FoldStringA
CopyFileA
SetEvent
GetShortPathNameA
LockResource
SizeofResource
GlobalAlloc
GetQueuedCompletionStatus
MoveFileA
FatalExit
FindFirstFileExA
SystemTimeToFileTime
Toolhelp32ReadProcessMemory
GetOverlappedResult
LocalShrink
CreateWaitableTimerA
IsBadHugeReadPtr
QueryDosDeviceA
Beep
GlobalUnlock
GetNamedPipeHandleStateW
GlobalMemoryStatus
VirtualLock
SetLocaleInfoW
ReadConsoleInputW
WriteConsoleW
EnumDateFormatsW
TlsGetValue
SetCurrentDirectoryA
EnumCalendarInfoW
lstrcpyn
Heap32Next
SetSystemPowerState
LoadLibraryExW
HeapCompact
OpenSemaphoreW
DuplicateHandle
IsProcessorFeaturePresent
GetWindowsDirectoryW
IsBadStringPtrA
SuspendThread
ReadConsoleOutputCharacterW
GetStartupInfoW
CreateProcessA
GetProcAddress
LCMapStringA
EnumResourceNamesW
FindClose
DeleteFileA
lstrcat
GetProfileSectionW
DeleteAtom
SetProcessAffinityMask
WinExec
LocalReAlloc
SetThreadLocale
CopyFileW
LoadResource
GetNumberFormatW
WriteFile
GlobalHandle
GetProfileStringW
GetCompressedFileSizeW
OpenSemaphoreA
PostQueuedCompletionStatus
GetCompressedFileSizeA
SetTimeZoneInformation
SetCalendarInfoA
GlobalReAlloc
SetFileTime
SetSystemTime
IsBadReadPtr
GetModuleHandleA
AddAtomA
VirtualFree
CancelWaitableTimer
CopyFileExW
GetConsoleOutputCP
BackupRead
SetPriorityClass
GetDiskFreeSpaceW
LoadLibraryW
EnumResourceLanguagesW
OpenWaitableTimerW
FillConsoleOutputCharacterW
OpenFileMappingA
GetLongPathNameA
GetConsoleCursorInfo
ConvertThreadToFiber
GetStringTypeExA
GetFileAttributesExW
GetTempFileNameW
VirtualFreeEx
LocalFlags
CreateDirectoryExA
GetPrivateProfileSectionNamesA
GetLocaleInfoA
EnumResourceTypesW
FreeResource
GetSystemTimeAsFileTime
CreateMailslotW
GetProfileStringA
CreateSemaphoreA
GetTickCount
IsBadWritePtr
FatalAppExitW
RequestDeviceWakeup
CompareStringA
lstrcmpiW
GetCurrencyFormatW
InitAtomTable
GetTempPathW
CloseHandle
SetConsoleTitleA
FlushConsoleInputBuffer
FileTimeToSystemTime
lstrcatW
CreateWaitableTimerW
SetFilePointer
SetConsoleCtrlHandler
IsBadCodePtr
lstrcmpi
GetCPInfoExW
DeleteFileW
GetLastError
lstrcpynA
LocalSize
CreateSemaphoreW
RemoveDirectoryW
WaitForSingleObjectEx
HeapLock
SetConsoleWindowInfo
GetSystemDirectoryA
MapViewOfFile
GenerateConsoleCtrlEvent
Thread32First
GetConsoleTitleA
DisableThreadLibraryCalls
UpdateResourceA
ReadFileEx
SetMailslotInfo
FoldStringW
OpenMutexA
GetVersion
GetProcessHeap
GetProfileIntA
GlobalGetAtomNameW
GetTimeFormatW
OpenEventA
IsSystemResumeAutomatic
GetVolumeInformationA
ReleaseMutex
PeekConsoleInputA
SetThreadIdealProcessor
GlobalSize
SetHandleInformation
GetNumberFormatA
GlobalAddAtomW
FindResourceW
UpdateResourceW
HeapDestroy
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess
advapi32
RegOpenKeyExW
GetSecurityDescriptorGroup
GetSecurityDescriptorLength
TrusteeAccessToObjectW
ConvertSecurityDescriptorToAccessNamedW
CryptGetDefaultProviderW
BackupEventLogW
SetEntriesInAccessListW
CryptDestroyHash
SetThreadToken
ObjectDeleteAuditAlarmW
RegOpenKeyExA
GetSecurityInfoExA
CryptGetKeyParam
SetFileSecurityA
AllocateAndInitializeSid
LookupPrivilegeValueW
AddAce
RegConnectRegistryA
BuildExplicitAccessWithNameA
CryptSetHashParam
GetSidLengthRequired
OpenBackupEventLogA
GetTrusteeNameW
CryptAcquireContextA
RegRestoreKeyW
QueryServiceStatus
shlwapi
SHGetValueW
PathMatchSpecW
UrlIsOpaqueA
PathMakePrettyA
StrCatBuffW
PathSearchAndQualifyW
StrRetToStrW
StrFromTimeIntervalA
PathIsDirectoryW
SHRegEnumUSKeyA
StrRChrIW
SHRegSetUSValueA
SHRegCreateUSKeyA
StrCatW
StrCmpW
AssocQueryStringByKeyA
SHRegEnumUSValueA
PathCreateFromUrlA
PathIsSameRootW
SHQueryValueExW
PathFindSuffixArrayA
PathCompactPathA
UrlUnescapeW
PathCanonicalizeA
StrRetToBufW
PathMakeSystemFolderW
StrIsIntlEqualA
UrlGetPartW
StrDupA
SHRegGetBoolUSValueW
PathGetCharTypeA
SHEnumValueA
SHAutoComplete
SHRegSetUSValueW
SHRegCloseUSKey
PathBuildRootW
PathRemoveArgsW
ole32
CoRegisterMallocSpy
CoInitializeSecurity
CoRegisterSurrogate
CreateILockBytesOnHGlobal
CoInitializeEx
OleConvertOLESTREAMToIStorageEx
CoGetCallContext
StgIsStorageFile
ReadClassStg
CoDosDateTimeToFileTime
OleSetMenuDescriptor
OleCreateLinkEx
OleRegEnumVerbs
CreateAntiMoniker
CoSetProxyBlanket
CoBuildVersion
Sections
.text Size: - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 752B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.vmp0 Size: - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
.vmp1 Size: 136KB - Virtual size: 135KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE