DefineFileType
insert_to_table
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
c0c05291a8a7d4c577498775c1987c1e_JaffaCakes118.exe
Resource
win7-20240708-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
c0c05291a8a7d4c577498775c1987c1e_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
c0c05291a8a7d4c577498775c1987c1e_JaffaCakes118
-
Size
3.5MB
-
MD5
c0c05291a8a7d4c577498775c1987c1e
-
SHA1
be58da3c98bf5d62da7d4729269d3effef17ff11
-
SHA256
15f7b08686692b1e24b1cc216be2eb1ae38a9ea517ea16e5835e2861bafdcb7c
-
SHA512
c35c846e05ea2ec824abd848a0016ccf78c62866d6760e6c729656d7658f1cd26fb809d61d4516eb877b112d2dd63db5bcd049c8c98d3d2358f45c85fa1fa94a
-
SSDEEP
24576:F8/q4FP5YSmvlt46F+1Zg9TmnM5UnKKA3+2YfdPWYny0cBAx6PTHz6gpNHMck9jc:S/qFZFNThGp2YfdBndcBAqTHz6gpN
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c0c05291a8a7d4c577498775c1987c1e_JaffaCakes118
Files
-
c0c05291a8a7d4c577498775c1987c1e_JaffaCakes118.exe windows:4 windows x86 arch:x86
5e371fad12581e31ad088fdee7e5881b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
wininet
InternetGetConnectedState
InternetGetCookieA
mfc71
ord1084
ord3210
ord1934
ord3161
ord4100
ord2094
ord3244
ord1955
ord1283
ord5658
ord2372
ord1903
ord1063
ord2092
ord1641
ord4238
ord2958
ord3230
ord658
ord1571
ord4115
ord6120
ord416
ord709
ord501
ord5833
ord2164
ord744
ord1452
ord5346
ord5097
ord556
ord5613
ord1425
ord3348
ord758
ord2264
ord2074
ord2075
ord567
ord3514
ord677
ord1031
ord1001
ord5458
ord5677
ord3256
ord444
ord6286
ord1211
ord2306
ord1181
ord2259
ord5443
ord783
ord5320
ord1159
ord3641
ord741
ord2095
ord1591
ord4240
ord3317
ord6283
ord5642
ord4394
ord3684
ord3423
ord2160
ord1545
ord4118
ord1377
ord3204
ord1280
ord2367
ord2086
ord4232
ord3164
ord587
ord5710
ord1916
ord6172
ord6178
ord1564
ord602
ord1966
ord1279
ord347
ord3441
ord4648
ord4692
ord3401
ord2719
ord5203
ord605
ord356
ord354
ord4580
ord3989
ord1968
ord5637
ord1929
ord2263
ord3651
ord1979
ord3287
ord3302
ord2370
ord2794
ord2495
ord2654
ord5871
ord4001
ord4123
ord5641
ord5634
ord326
ord2873
ord2882
ord3761
ord3875
ord4888
ord3163
ord1931
ord1483
ord4098
ord2089
ord1547
ord4234
ord3171
ord591
ord657
ord589
ord330
ord5647
ord6037
ord5727
ord1397
ord6266
ord1933
ord1570
ord4237
ord3430
ord3488
ord1484
ord4099
ord2091
ord3229
ord502
ord6017
ord5059
ord4761
ord3596
ord5563
ord2271
ord4078
ord2371
ord3680
ord3587
ord3799
ord1654
ord1598
ord2987
ord3328
ord754
ord2876
ord4104
ord1263
ord908
ord5154
ord3952
ord2321
ord577
ord2467
ord777
ord3760
ord293
ord6182
ord298
ord2662
ord2899
ord5491
ord1262
ord2020
ord5986
ord1930
ord3795
ord2131
ord4353
ord4564
ord3255
ord5331
ord6297
ord280
ord283
ord774
ord2130
ord300
ord287
ord3835
ord6020
ord3635
ord3595
ord5227
ord4569
ord5567
ord570
ord759
ord2249
ord1716
ord6236
ord6310
ord5529
ord6040
ord6041
ord1647
ord1589
ord739
ord2346
ord5640
ord2234
ord1580
ord2233
ord1486
ord3473
ord2090
ord1637
ord1558
ord4236
ord3214
ord642
ord4350
ord2867
ord6119
ord3551
ord1643
ord715
ord1581
ord3139
ord3292
ord1554
ord3195
ord620
ord1587
ord3307
ord731
ord1550
ord3178
ord599
ord1576
ord1575
ord3249
ord671
ord1652
ord1596
ord2985
ord3326
ord752
ord2097
ord1649
ord1593
ord4242
ord3319
ord743
ord1638
ord1559
ord3215
ord643
ord3315
ord1646
ord1588
ord3312
ord736
ord2098
ord1650
ord1594
ord4243
ord2983
ord3324
ord748
ord1635
ord1543
ord3157
ord583
ord1645
ord1586
ord3304
ord730
ord1644
ord1584
ord3298
ord1636
ord1548
ord3172
ord592
ord1639
ord1568
ord3227
ord656
ord1640
ord1569
ord3228
ord2328
ord1265
ord2327
ord4032
ord282
ord2932
ord1264
ord2594
ord4036
ord4037
ord4033
ord4034
ord2319
ord1260
ord3574
ord3454
ord3437
ord259
ord1971
ord2938
ord6288
ord1092
ord3233
ord423
ord660
ord4063
ord866
ord5466
ord3474
ord2802
ord3563
ord5991
ord5994
ord3406
ord3571
ord3676
ord3583
ord314
ord262
ord3428
ord590
ord331
ord1917
ord1740
ord531
ord5437
ord1003
ord6067
ord651
ord1025
ord4044
ord1024
ord6275
ord566
ord557
ord757
ord745
ord3333
ord4481
ord2838
ord5566
ord5213
ord5230
ord4568
ord3948
ord5226
ord5224
ord2931
ord1920
ord3832
ord5382
ord6219
ord5102
ord1010
ord3806
ord5583
ord2018
ord2063
ord4326
ord6276
ord3801
ord6278
ord4014
ord4038
ord442
ord548
ord675
ord1126
ord4081
ord3830
ord1054
ord1101
ord907
ord2248
ord865
ord2468
ord5403
ord559
ord747
ord3174
ord6205
ord572
ord760
ord3337
ord4261
ord2991
ord5214
ord5073
ord1402
ord5915
ord2451
ord1258
ord1248
ord317
ord1434
ord584
ord3683
ord5746
ord4125
ord6090
ord581
ord1167
ord1209
ord3879
ord5866
ord1091
ord5715
ord1185
ord6006
ord5731
ord6282
ord6065
ord911
ord384
ord5089
ord5323
ord1439
ord629
ord2368
ord4735
ord2496
ord4035
ord1395
ord5751
ord3883
ord2168
ord4262
ord4486
ord3949
ord2644
ord3709
ord3719
ord3718
ord2533
ord2646
ord2540
ord2862
ord2714
ord4307
ord2835
ord2731
ord2537
ord5200
ord1599
ord1655
ord1656
ord1964
ord5175
ord1362
ord4967
ord3345
ord6277
ord3802
ord6279
ord1522
ord2172
ord2178
ord2405
ord2387
ord2385
ord2403
ord2415
ord2392
ord2408
ord2413
ord2396
ord2398
ord2400
ord2394
ord2410
ord2390
ord934
ord930
ord932
ord928
ord923
ord5233
ord5235
msvcr71
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_wcslwr
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_onexit
__dllonexit
__security_error_handler
memset
wcscmp
_strlwr
_stat
_mbsnbcat
realloc
_mbsspnp
strerror
_errno
_mbslwr
_mbsrchr
_purecall
strtol
_mbschr
vsprintf
_vscprintf
vswprintf
_vscwprintf
strtoul
_mbsnbcpy
wcslen
_beginthread
_mbctype
_mbsicmp
_mbscmp
atoi
_stricmp
memmove
_mbsstr
_time64
fscanf
_strdup
exit
rand
sprintf
fopen
fgets
fclose
time
_wcsicmp
_wcsdup
strstr
wcscpy
_except_handler3
malloc
__RTDynamicCast
free
??0exception@@QAE@ABV0@@Z
_CxxThrowException
??0exception@@QAE@XZ
??1exception@@UAE@XZ
_beginthreadex
__CxxFrameHandler
_setmbcp
_strcmpi
kernel32
CreateMutexA
lstrcatA
GetModuleFileNameA
SetEvent
GetLocalTime
GetTempPathA
GetTempFileNameA
FindResourceA
SizeofResource
LoadResource
LockResource
CreateFileA
GetCurrentProcessId
WriteFile
ReadFile
LeaveCriticalSection
EnterCriticalSection
lstrlenW
lstrcmpiA
ReleaseMutex
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetCommandLineA
lstrcpyA
CreateThread
InterlockedDecrement
MultiByteToWideChar
OpenProcess
SetPriorityClass
CloseHandle
lstrlenA
GetPrivateProfileStringA
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetSystemDirectoryA
GetVolumeInformationA
SystemTimeToFileTime
FileTimeToSystemTime
GetDateFormatA
GetTimeFormatA
GetLastError
WaitForSingleObject
RemoveDirectoryA
SetFileAttributesA
ExpandEnvironmentStringsA
SetCurrentDirectoryA
CreateEventA
Sleep
ResumeThread
GetExitCodeProcess
GetFileAttributesA
PulseEvent
lstrcpynA
MulDiv
GetProcAddress
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetDriveTypeA
GetLogicalDriveStringsA
ResetEvent
GetLogicalDrives
TerminateProcess
TerminateThread
CreateProcessA
InterlockedIncrement
GetCurrentThreadId
SetLastError
lstrcmpA
FindResourceExA
WriteProcessMemory
GetCurrentProcess
VirtualProtect
FindResourceW
FindResourceExW
SuspendThread
Thread32Next
Thread32First
CreateToolhelp32Snapshot
DeleteFileA
FindFirstFileA
GetDiskFreeSpaceA
CreateDirectoryA
CopyFileA
GetCurrentDirectoryA
GetFileAttributesExA
FindNextFileA
FindClose
SetFilePointer
Process32Next
Process32First
WaitForMultipleObjects
WideCharToMultiByte
GetTickCount
GetFileSize
CreateFileW
LocalFree
LocalAlloc
ExitProcess
GetStartupInfoA
QueryPerformanceCounter
GetSystemTimeAsFileTime
MoveFileA
SetEndOfFile
GetVersion
user32
KillTimer
DispatchMessageA
GetMessageA
GetWindowThreadProcessId
DestroyMenu
CallWindowProcA
DestroyCursor
EndPaint
BeginPaint
SetTimer
IsZoomed
GetMenuItemID
AppendMenuA
WindowFromPoint
UnhookWindowsHookEx
GetAsyncKeyState
LoadImageW
LoadImageA
LoadCursorW
LoadIconW
LoadBitmapW
LoadStringW
DrawFocusRect
SystemParametersInfoA
SetRectEmpty
GetMenuItemRect
UnionRect
TrackPopupMenuEx
SetMenuItemInfoA
SetMenuItemBitmaps
GetMenuItemInfoA
GetMenuDefaultItem
GetMenuItemCount
GetMenuState
IsMenu
InsertMenuItemA
keybd_event
LoadStringA
PostThreadMessageA
IsWindowUnicode
GetMessageW
DispatchMessageW
GetWindowTextA
SetWindowsHookExA
GetKeyboardState
SetKeyboardState
CallNextHookEx
GetActiveWindow
CopyImage
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
RegisterClassExA
CreateWindowExA
DefWindowProcA
PeekMessageA
TranslateMessage
MsgWaitForMultipleObjects
DestroyIcon
FrameRect
GetFocus
LoadMenuA
IsWindowEnabled
SetFocus
GetSubMenu
IsRectEmpty
SetWindowLongA
GetCapture
MapWindowPoints
GetComboBoxInfo
GetDlgCtrlID
OffsetRect
GetKeyState
ValidateRect
FillRect
GetWindow
GetClassNameA
SetWindowRgn
DrawStateA
FindWindowExA
LoadBitmapA
GetWindowDC
ReleaseCapture
PtInRect
LoadCursorA
SetCapture
ReleaseDC
GetDC
CopyRect
SetCursor
GetDlgItem
DrawTextA
InflateRect
GetSysColor
EnableScrollBar
SetScrollPos
SetRect
GetParent
GetDesktopWindow
GetWindowRect
GetWindowLongA
IsWindow
GetForegroundWindow
GetSystemMenu
TrackPopupMenu
GetCursorPos
GetSystemMetrics
LoadIconA
SetActiveWindow
RedrawWindow
ScreenToClient
ClientToScreen
GetClientRect
SetMenuDefaultItem
EnableMenuItem
CreatePopupMenu
DrawIcon
FindWindowA
IsWindowVisible
ShowWindow
SetWindowPos
EnableWindow
SendMessageA
UpdateWindow
InvalidateRect
IsIconic
SetParent
PostMessageA
BringWindowToTop
SetForegroundWindow
gdi32
GetTextMetricsA
CreateFontA
GetBitmapBits
SetBitmapBits
Rectangle
CreateBrushIndirect
MoveToEx
LineTo
CreateDIBitmap
GetRgnBox
GetPixel
TextOutA
GetBkColor
GetBkMode
GetTextColor
PtInRegion
SetPixel
CreateRectRgnIndirect
ExtCreatePen
CreatePen
SetStretchBltMode
DPtoLP
CreateBitmap
GetMapMode
SetMapMode
SetBkColor
CreateSolidBrush
GetDIBits
CreateEllipticRgn
CreateRectRgn
CombineRgn
SetBkMode
SetTextColor
GetDeviceCaps
GetObjectA
CreateFontIndirectA
GetStockObject
StretchBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteObject
DeleteDC
GetTextExtentPoint32A
PatBlt
msimg32
AlphaBlend
TransparentBlt
advapi32
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
GetUserNameA
RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyA
shell32
ShellExecuteExA
SHAppBarMessage
Shell_NotifyIconA
SHGetPathFromIDListA
SHEmptyRecycleBinA
SHQueryRecycleBinA
SHGetMalloc
ord155
ord25
ord21
ord18
SHGetFileInfoA
SHGetSpecialFolderPathA
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteA
comctl32
_TrackMouseEvent
ImageList_GetIconSize
ord17
ImageList_DrawEx
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Draw
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_GetImageInfo
shlwapi
PathCombineA
PathAppendA
PathIsDirectoryEmptyA
PathRemoveFileSpecA
PathFileExistsA
PathFindOnPathA
PathIsDirectoryA
ole32
CLSIDFromString
StgOpenStorage
CoInitialize
CoCreateInstance
CoUninitialize
OleRun
oleaut32
VariantInit
SysAllocString
VariantClear
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
SysStringLen
VariantCopy
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SysReAllocString
SystemTimeToVariantTime
SysFreeString
msvcp71
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??7ios_base@std@@QBE_NXZ
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
??Bios_base@std@@QBEPAXXZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?data@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@Viterator@12@0ABV12@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?flags@ios_base@std@@QBEHXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?width@ios_base@std@@QBEHXZ
?eof@?$char_traits@D@std@@SAHXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?width@ios_base@std@@QAEHH@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?good@ios_base@std@@QBE_NXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
version
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA
imagehlp
ImageDirectoryEntryToData
Exports
Exports
Sections
.text Size: 760KB - Virtual size: 757KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 188KB - Virtual size: 184KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 541B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.5MB - Virtual size: 2.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ