Static task
static1
Behavioral task
behavioral1
Sample
a8f7c63db346620b5e58268847fb5796_JaffaCakes118.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral2
Sample
a8f7c63db346620b5e58268847fb5796_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
a8f7c63db346620b5e58268847fb5796_JaffaCakes118
-
Size
264KB
-
MD5
a8f7c63db346620b5e58268847fb5796
-
SHA1
282c1ad400749d44494ecd3f7291f7f00ba7f699
-
SHA256
df17b24b3d04f0dadcf4ce05fc7cae3f8d5949624570fb5c8480bac4d7914c0a
-
SHA512
b980fc17b923f4bb29a60bcad673363df1be1a80f1b4fd772d9eb92df8f9860cab0f4d2ce1083d1931e49cd652707cc6ed247729b13213e572ac059b5b55e28a
-
SSDEEP
6144:pHB+N9ky3E5oQ5S4AGMC3sShgbYYd1uBB6:pHEDkyU5oQY4AJCzhD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a8f7c63db346620b5e58268847fb5796_JaffaCakes118
Files
-
a8f7c63db346620b5e58268847fb5796_JaffaCakes118.exe windows:4 windows x86 arch:x86
528967a434b1ceec6141a2fcc2a24a79
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comdlg32
CommDlgExtendedError
GetFileTitleA
PageSetupDlgA
PrintDlgA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
ReplaceTextA
ChooseFontA
oleaut32
LoadTypeLi
kernel32
HeapDestroy
GetWindowsDirectoryA
LCMapStringW
GetStartupInfoA
TlsSetValue
FatalAppExitA
SetUnhandledExceptionFilter
SetEvent
EnterCriticalSection
SetStdHandle
InitializeCriticalSectionAndSpinCount
LocalAlloc
GetFileType
SetLastError
GetSystemInfo
WritePrivateProfileStringW
IsDebuggerPresent
DeleteFileA
FreeLibrary
SizeofResource
FindClose
MoveFileExA
SetErrorMode
GetLastError
InterlockedDecrement
GlobalFree
GetLogicalDriveStringsW
MapViewOfFile
InterlockedIncrement
WritePrivateProfileStringA
SetFileAttributesA
GetStringTypeA
VirtualFree
GlobalHandle
LockResource
CloseHandle
DeleteCriticalSection
VirtualAlloc
ResumeThread
GetEnvironmentStrings
GetProfileStringA
lstrcpyW
RtlUnwind
SetFileAttributesW
ExpandEnvironmentStringsW
lstrcatA
FileTimeToSystemTime
GetVolumeInformationA
LCMapStringA
GetDriveTypeA
DebugBreak
GetTempPathA
IsBadWritePtr
OutputDebugStringA
MulDiv
GetTimeZoneInformation
CopyFileA
GlobalReAlloc
EnumSystemLocalesA
GetVersionExA
ExitThread
FormatMessageA
lstrlenA
GetACP
GlobalFindAtomA
TlsGetValue
LocalReAlloc
HeapFree
TlsFree
GetCurrentDirectoryA
GetFileInformationByHandle
GetVersion
CompareStringA
GlobalGetAtomNameA
GetLocaleInfoW
GetEnvironmentStringsW
GetLocalTime
LocalFree
VirtualQuery
GetDateFormatA
GetModuleFileNameW
CreateFileA
SetThreadPriority
GetTimeFormatW
GetPrivateProfileSectionNamesA
FlushFileBuffers
CreateMutexA
GetFullPathNameW
IsValidCodePage
CreateEventA
ResetEvent
lstrcmpiA
CreateFileMappingW
GetShortPathNameA
Sleep
CreateProcessA
FileTimeToDosDateTime
CreateToolhelp32Snapshot
GetStdHandle
IsBadReadPtr
SystemTimeToFileTime
InitializeCriticalSection
UnlockFile
ExitProcess
OpenMutexA
GetUserDefaultLangID
CreateDirectoryW
GlobalFlags
GetProcAddress
GlobalLock
GetPrivateProfileStringW
SetHandleCount
UnhandledExceptionFilter
FileTimeToLocalFileTime
GetCPInfo
LoadLibraryA
HeapSize
FindFirstFileA
LeaveCriticalSection
WideCharToMultiByte
RemoveDirectoryW
WritePrivateProfileSectionA
GetTimeFormatA
VirtualProtect
FindNextFileA
GlobalAddAtomA
GetEnvironmentVariableA
GetCommandLineW
ReadFile
GetSystemDirectoryA
GetModuleHandleW
GetCurrentThreadId
WaitForSingleObject
GlobalMemoryStatus
GlobalUnlock
OpenProcess
GetTempFileNameA
GetFileSize
IsDBCSLeadByte
lstrcpynA
lstrlenW
GetOEMCP
GetCurrentProcessId
ConvertDefaultLocale
GetDiskFreeSpaceA
CreateThread
InterlockedExchange
TerminateProcess
FindResourceA
MultiByteToWideChar
LockFile
LoadLibraryW
HeapReAlloc
HeapCreate
GetLocaleInfoA
GetPrivateProfileIntA
GetCurrentThread
GetStringTypeW
GetSystemTimeAsFileTime
lstrcmpA
IsBadCodePtr
SetEndOfFile
HeapAlloc
GetFullPathNameA
QueryPerformanceCounter
GetStartupInfoW
WaitForMultipleObjects
GetLongPathNameW
CreateFileW
GetWindowsDirectoryW
CreateDirectoryA
GetUserDefaultLCID
GetModuleHandleA
WinExec
DuplicateHandle
GlobalDeleteAtom
SetEnvironmentVariableA
CompareStringW
FreeEnvironmentStringsA
CreateEventW
FreeEnvironmentStringsW
GetThreadLocale
TlsAlloc
GetModuleFileNameA
FreeResource
WriteFile
SetFilePointer
MoveFileW
_llseek
GetCommandLineA
IsValidLocale
GlobalAlloc
SuspendThread
GetCurrentProcess
GetTickCount
LoadResource
RaiseException
GetProcessVersion
lstrcpynW
LocalFileTimeToFileTime
GetFileAttributesA
GetPrivateProfileStringA
FindFirstFileW
gdi32
PolyPolyline
RectVisible
CreateHatchBrush
Escape
GetTextAlign
OffsetViewportOrgEx
GetOutlineTextMetricsA
GetPath
GetPolyFillMode
FlattenPath
SetViewportOrgEx
TextOutW
GetTextMetricsW
GetPaletteEntries
DeleteDC
GetROP2
GetWindowOrgEx
ResetDCA
CreateEllipticRgnIndirect
GetBkMode
FillRgn
SetTextAlign
EqualRgn
GetTextExtentPointA
TextOutA
SelectPalette
BeginPath
SetColorAdjustment
CreateICA
Chord
ExtFloodFill
GetViewportOrgEx
RoundRect
SetAbortProc
GetRgnBox
PathToRegion
AddFontResourceA
EndPath
GetTextCharset
GetWindowExtEx
CreateSolidBrush
ExtSelectClipRgn
SetROP2
SetPixel
GetClipBox
GetMapMode
CloseEnhMetaFile
ArcTo
ExtTextOutA
RestoreDC
CreateMetaFileA
ExcludeClipRect
GetTextColor
SetTextJustification
GetCharWidthA
SetBkMode
CreateDIBPatternBrushPt
CreateRectRgnIndirect
PolyDraw
SaveDC
CombineRgn
CreateHalftonePalette
PlgBlt
SetMiterLimit
PolyBezier
PlayEnhMetaFile
CreateFontA
CloseMetaFile
EndPage
ExtCreateRegion
GetAspectRatioFilterEx
CopyMetaFileA
Pie
GetCharWidthFloatA
DPtoLP
SetRectRgn
StartPage
SetStretchBltMode
FillPath
CreatePalette
MaskBlt
CreateBrushIndirect
SetArcDirection
GetDeviceCaps
IntersectClipRect
CreateCompatibleBitmap
CreateBitmap
PolylineTo
CreatePatternBrush
SetViewportExtEx
GetTextCharsetInfo
GetDCOrgEx
EnumObjects
Arc
EndDoc
Polyline
GetBoundsRect
FloodFill
GetMiterLimit
AbortDoc
AbortPath
GetCharABCWidthsA
SetBitmapBits
PtInRegion
RealizePalette
CreateDiscardableBitmap
PlayMetaFileRecord
LPtoDP
PtVisible
GetTextFaceA
SetBrushOrgEx
GetTextExtentPoint32W
GetColorAdjustment
DeleteMetaFile
GetTextExtentPoint32A
GetCharABCWidthsFloatA
GetViewportExtEx
SetPaletteEntries
Rectangle
FrameRgn
SelectClipRgn
ScaleViewportExtEx
GetTextExtentExPointW
CreateEllipticRgn
CreateCompatibleDC
GetObjectW
StartDocA
CreateDIBSection
GetCurrentObject
SetWindowExtEx
CreateDCA
GetClipRgn
CreateEnhMetaFileA
OffsetRgn
GetNearestColor
GetPixel
DeleteObject
AnimatePalette
CreatePenIndirect
PatBlt
CreateRectRgn
DrawEscape
GetGlyphOutlineA
SetBoundsRect
DeleteEnhMetaFile
GetKerningPairsA
GetEnhMetaFileHeader
CreatePolygonRgn
CreateDIBitmap
EnumFontFamiliesExA
StrokeAndFillPath
SelectObject
BitBlt
SetPixelV
GetObjectA
GetCurrentPositionEx
GetStockObject
LineTo
PaintRgn
StretchDIBits
CreateFontIndirectA
EnumMetaFile
UnrealizeObject
CreateRoundRectRgn
GetCharWidthW
CreatePolyPolygonRgn
GetDIBits
SetDIBitsToDevice
GetBitmapBits
CreateBitmapIndirect
GdiFlush
MoveToEx
SetBkColor
SelectClipPath
SetMapMode
ScaleWindowExtEx
Polygon
GetBkColor
WidenPath
GdiComment
OffsetWindowOrgEx
SetTextColor
GetObjectType
Ellipse
GetCharABCWidthsW
GetNearestPaletteIndex
CreateFontW
PolyBezierTo
StretchBlt
RectInRegion
ResizePalette
GetTextMetricsA
InvertRgn
ExtCreatePen
SetPolyFillMode
GetBrushOrgEx
SetMapperFlags
SetWindowOrgEx
AngleArc
CreatePen
GetStretchBltMode
comctl32
ImageList_DrawEx
ImageList_EndDrag
ImageList_Create
ImageList_GetIcon
ImageList_Read
InitCommonControlsEx
_TrackMouseEvent
ImageList_DragShowNolock
ImageList_SetBkColor
ImageList_SetOverlayImage
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_Destroy
CreatePropertySheetPageA
ImageList_Duplicate
DestroyPropertySheetPage
ord17
ImageList_DragEnter
PropertySheetW
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_AddMasked
ImageList_Draw
ImageList_SetDragCursorImage
ImageList_BeginDrag
ImageList_Write
ImageList_LoadImageW
CreatePropertySheetPageW
ImageList_DragLeave
ImageList_Replace
ImageList_GetImageInfo
ImageList_Add
ImageList_GetIconSize
user32
DialogBoxParamA
ToAsciiEx
SetWindowTextA
SetRectEmpty
PostMessageA
GetScrollInfo
ExitWindowsEx
InvalidateRgn
LoadBitmapA
OffsetRect
UpdateWindow
RemovePropW
GetMessagePos
GetDlgCtrlID
CharToOemBuffA
GetClassLongA
CreateDialogIndirectParamW
MoveWindow
ExcludeUpdateRgn
CharUpperW
LoadMenuA
PeekMessageA
ModifyMenuA
SetCursorPos
GetSystemMetrics
GetClassLongW
GetMenu
FindWindowA
SetTimer
TranslateAcceleratorA
LoadCursorW
GetMenuStringA
CreateWindowExA
GetSysColor
InsertMenuW
GetTopWindow
ShowWindow
GetClassNameA
DrawEdge
SetCursor
PostThreadMessageA
SetMenuDefaultItem
InflateRect
GetDesktopWindow
CreateWindowExW
LoadStringA
GetMenuItemInfoA
GetLastActivePopup
SetMenuItemInfoA
GetPropA
RedrawWindow
GetPropW
WaitMessage
TrackPopupMenuEx
GetMenuItemID
KillTimer
RegisterWindowMessageA
GetDCEx
GetActiveWindow
SetMenuItemBitmaps
CreatePopupMenu
DialogBoxParamW
DestroyIcon
PtInRect
GetWindowPlacement
SetClassLongA
SendMessageTimeoutA
SetFocus
GetDC
MessageBeep
LockWindowUpdate
GetWindow
CheckRadioButton
DdeFreeStringHandle
BeginDeferWindowPos
wsprintfA
IsMenu
SetLayeredWindowAttributes
GetMonitorInfoW
MapWindowPoints
RegisterClassW
IsChild
DrawIconEx
IsDialogMessageA
InvertRect
ReleaseCapture
DrawIcon
EnableMenuItem
LoadImageW
EndDeferWindowPos
GetWindowLongW
SetWindowsHookExW
DrawTextExW
GrayStringA
GetWindowRect
GetMenuItemCount
GetForegroundWindow
GetWindowLongA
RegisterWindowMessageW
GetWindowTextA
UnregisterClassA
SetDlgItemTextA
CreateMenu
CallNextHookEx
CreateIconIndirect
GetMenuStringW
GetWindowTextW
InsertMenuItemA
SetWindowPlacement
BringWindowToTop
SetWindowContextHelpId
GetKeyState
DestroyWindow
IsWindow
GetWindowDC
GetDlgItem
DestroyCursor
CharNextA
SendDlgItemMessageA
GetMessageA
DrawStateA
SetMenuItemInfoW
InvalidateRect
ScreenToClient
ClientToScreen
GetWindowTextLengthA
DefWindowProcW
ReleaseDC
SetCapture
DefWindowProcA
GetAncestor
GetClassInfoExW
CreateAcceleratorTableA
SetWindowLongA
TranslateAcceleratorW
EndPaint
UnionRect
SetRect
LoadBitmapW
IsZoomed
RegisterClassExA
CopyRect
SendMessageA
DefDlgProcA
CreateDialogIndirectParamA
CharLowerW
AdjustWindowRectEx
GetUpdateRect
ShowCaret
FillRect
CreateDialogParamW
CloseClipboard
CharUpperA
CreateIconFromResourceEx
CreateCaret
PostThreadMessageW
MessageBoxW
GetIconInfo
OpenClipboard
DdeFreeDataHandle
ShowScrollBar
IsRectEmpty
WindowFromPoint
EmptyClipboard
TranslateMessage
IsWindowEnabled
GetCursorPos
SubtractRect
SetWindowsHookExA
EnableWindow
GetMessageTime
CopyAcceleratorTableA
OpenIcon
DispatchMessageA
DrawTextExA
SetParent
UnhookWindowsHookEx
GetSysColorBrush
IsDlgButtonChecked
DrawTextW
CallWindowProcW
EqualRect
ValidateRect
SetClipboardData
SetDlgItemInt
GetNextDlgGroupItem
IsIconic
RegisterClassA
SetForegroundWindow
GetMenuState
GetWindowThreadProcessId
UnregisterClassW
DeleteMenu
BeginPaint
IsWindowVisible
GetClassInfoA
ScrollWindow
IntersectRect
DrawTextA
PostQuitMessage
GetParent
SystemParametersInfoA
DeferWindowPos
WindowFromDC
TabbedTextOutA
CharToOemA
MessageBoxA
SetPropA
DestroyMenu
GetWindowRgn
PeekMessageW
EndDialog
GetSubMenu
SetWindowLongW
GetNextDlgTabItem
CharNextW
LoadIconA
ShowOwnedPopups
IsDialogMessageW
CheckMenuItem
SetActiveWindow
RemoveMenu
MapDialogRect
DrawMenuBar
ReuseDDElParam
CallWindowProcA
SetWindowPos
GetClipboardData
SetScrollInfo
GetCapture
GetMessageW
GetClientRect
DrawFrameControl
GetSystemMenu
SetCaretPos
GetClassNameW
LoadCursorA
RemovePropA
CharLowerA
GetFocus
GetDlgItemInt
RegisterClipboardFormatA
DrawAnimatedRects
HideCaret
wininet
InternetCrackUrlA
InternetSetFilePointer
InternetCanonicalizeUrlA
FtpDeleteFileA
HttpOpenRequestA
HttpAddRequestHeadersA
InternetErrorDlg
InternetQueryOptionA
FtpOpenFileA
InternetOpenA
HttpAddRequestHeadersW
FtpSetCurrentDirectoryA
InternetOpenUrlA
InternetConnectA
InternetReadFile
InternetSetOptionExA
InternetGetLastResponseInfoA
HttpSendRequestExA
HttpSendRequestA
InternetQueryDataAvailable
HttpQueryInfoA
InternetSetStatusCallback
InternetWriteFile
FtpRemoveDirectoryA
FtpRenameFileA
InternetCloseHandle
advapi32
FreeSid
RegOpenKeyExA
LookupPrivilegeValueA
CloseServiceHandle
ReportEventA
GetUserNameA
RegCreateKeyExA
QueryServiceConfigA
SetSecurityDescriptorOwner
RegEnumKeyA
RegQueryInfoKeyW
RegSetValueA
RegOpenKeyExW
QueryServiceStatus
CryptDestroyHash
GetLengthSid
RegCreateKeyA
AdjustTokenPrivileges
CreateServiceA
ChangeServiceConfigA
RegisterEventSourceA
ControlService
CryptDeriveKey
GetTokenInformation
RegQueryValueExA
RegOpenKeyW
RegDeleteValueW
SetSecurityDescriptorGroup
StartServiceA
CryptCreateHash
OpenServiceA
RegSetValueExA
RegQueryValueW
RegEnumKeyExA
InitializeSecurityDescriptor
DuplicateToken
EqualSid
CryptGetHashParam
SetSecurityDescriptorDacl
OpenProcessToken
CryptAcquireContextA
RegEnumValueW
CryptDestroyKey
RegDeleteKeyW
StartServiceCtrlDispatcherA
CryptHashData
RegQueryInfoKeyA
GetFileSecurityW
RegDeleteKeyA
RegCreateKeyExW
DeleteService
RegOpenKeyA
RegDeleteValueA
RegSetValueExW
AllocateAndInitializeSid
DeregisterEventSource
RegQueryValueA
OpenSCManagerA
CopySid
RegQueryValueExW
RegCloseKey
RegEnumValueA
Sections
.text Size: 80KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 84KB - Virtual size: 82KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 76KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ