Static task
static1
Behavioral task
behavioral1
Sample
dc71685b7e9fec4b58298ebdc5c2511e_JaffaCakes118.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
dc71685b7e9fec4b58298ebdc5c2511e_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
$TEMP/Nirw1Tf4nk.dll
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral4
Sample
$TEMP/Nirw1Tf4nk.dll
Resource
win10v2004-20240910-en
windows10-2004-x64
Target
dc71685b7e9fec4b58298ebdc5c2511e_JaffaCakes118
Size
115KB
MD5
dc71685b7e9fec4b58298ebdc5c2511e
SHA1
155afbea99f1ef578a8c2b698eb1b38892e1d353
SHA256
200d7cf6d102d2ae6779b2cbaf4dfb3654492e35caf3c511d5c65376a6eef589
SHA512
a1d585f7a993eb86e7f6a91a39c2775dd93ce6f31c39a2f19562aa978eb935c9ed4a0fae16db1a446cdbb8e6f6e656d87cdc8a5fe83c534317ab9ab66d4b6031
SSDEEP
3072:IgXdZt9P6D3XJbCIF4MSHWs3oHv+pDcrX5p7++:Ie344IHm3oHvd/Z
Checks for missing Authenticode signature.
| resource |
|---|
| dc71685b7e9fec4b58298ebdc5c2511e_JaffaCakes118 |
| resource | yara_rule |
|---|---|
| sample | nsis_installer_1 |
| sample | nsis_installer_2 |
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow
SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create
CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ExtKeyUsageCodeSigning
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetWindowsDirectoryA
DosDateTimeToFileTime
AddAtomW
AddConsoleAliasW
AllocateUserPhysicalPages
AreFileApisANSI
AssignProcessToJobObject
BackupRead
BackupSeek
BeginUpdateResourceA
CallNamedPipeA
CancelTimerQueueTimer
ChangeTimerQueueTimer
ClearCommBreak
CommConfigDialogW
CompareFileTime
ConnectNamedPipe
ConvertThreadToFiber
CopyFileA
CopyFileExA
CreateDirectoryA
CreateDirectoryExA
CreateDirectoryExW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFiber
CreateFileW
CreateHardLinkA
CreateIoCompletionPort
CreateJobObjectW
CreateProcessW
CreateSemaphoreA
CreateTapePartition
CreateTimerQueueTimer
DeleteAtom
DeleteFiber
DeleteFileA
DeleteTimerQueueTimer
DeleteVolumeMountPointA
DisableThreadLibraryCalls
DisconnectNamedPipe
DnsHostnameToComputerNameW
EnumCalendarInfoExA
EnumCalendarInfoExW
EnumDateFormatsA
EnumDateFormatsW
EnumResourceLanguagesW
EnumSystemCodePagesA
EnumSystemCodePagesW
EscapeCommFunction
ExitProcess
FatalAppExitA
FatalAppExitW
FileTimeToDosDateTime
FillConsoleOutputCharacterA
FindClose
FindFirstFileA
FindFirstFileW
FindFirstVolumeMountPointA
FindFirstVolumeMountPointW
FindNextChangeNotification
FindNextFileW
FindNextVolumeA
FindNextVolumeMountPointW
FindResourceA
FindResourceExA
FindResourceExW
FindResourceW
FindVolumeClose
FlushInstructionCache
FlushViewOfFile
FormatMessageW
FreeConsole
GetBinaryTypeW
GetCalendarInfoW
GetCommConfig
GetCommandLineW
GetCompressedFileSizeA
GetComputerNameA
GetComputerNameExA
GetComputerNameW
GetConsoleAliasA
GetConsoleAliasExesA
GetConsoleAliasExesLengthW
GetConsoleCP
GetConsoleDisplayMode
GetConsoleFontSize
GetConsoleOutputCP
GetConsoleWindow
GetCurrencyFormatW
GetDateFormatW
GetDevicePowerState
GetDiskFreeSpaceExA
GetFileAttributesExA
GetFileAttributesW
GetFullPathNameW
GetHandleInformation
GetLogicalDrives
GetLongPathNameA
GetMailslotInfo
GetModuleHandleA
GetNamedPipeHandleStateA
GetNamedPipeHandleStateW
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionNamesW
GetProcAddress
GetProcessPriorityBoost
GetProfileIntW
GetProfileSectionA
GetProfileStringW
GetQueuedCompletionStatus
GetStartupInfoA
GetStartupInfoW
GetStringTypeA
GetSystemDefaultUILanguage
GetSystemTime
GetSystemWindowsDirectoryW
GetTapeParameters
GetTempPathW
GetThreadLocale
GetThreadPriorityBoost
GetTimeFormatA
GetVersionExA
GetVolumeInformationA
lstrcatA
GetVolumePathNameA
GetVolumePathNameW
GetWriteWatch
GlobalFindAtomA
GlobalFindAtomW
GlobalFlags
GlobalFree
GlobalGetAtomNameW
GlobalHandle
GlobalMemoryStatus
GlobalSize
GlobalUnWire
GlobalUnfix
GlobalUnlock
HeapCompact
HeapDestroy
HeapLock
InitAtomTable
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
IsBadHugeReadPtr
IsBadHugeWritePtr
IsBadReadPtr
IsBadWritePtr
IsDBCSLeadByte
IsDebuggerPresent
IsValidLanguageGroup
LCMapStringA
LoadResource
LocalCompact
LocalFlags
LocalFree
LocalLock
LocalReAlloc
LocalShrink
LockResource
MapViewOfFileEx
Module32First
Module32NextW
MoveFileExA
MoveFileExW
MoveFileWithProgressW
MulDiv
OpenEventW
OpenFileMappingW
OpenProcess
OpenSemaphoreA
OpenWaitableTimerA
OpenWaitableTimerW
OutputDebugStringW
PeekConsoleInputA
Process32Next
QueryInformationJobObject
ReadConsoleInputA
ReadConsoleInputW
ReadConsoleOutputAttribute
ReadDirectoryChangesW
ReadFile
ReadFileEx
ReadProcessMemory
RtlFillMemory
RtlZeroMemory
ScrollConsoleScreenBufferA
SearchPathA
SetCommTimeouts
SetConsoleActiveScreenBuffer
SetConsoleCursor
SetConsoleCursorInfo
SetConsoleScreenBufferSize
SetConsoleTitleA
SetConsoleTitleW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetFileApisToOEM
SetFileAttributesA
SetFilePointerEx
SetHandleCount
SetHandleInformation
SetLocaleInfoA
SetNamedPipeHandleState
SetProcessWorkingSetSize
SetStdHandle
SetThreadAffinityMask
SetThreadExecutionState
SetThreadIdealProcessor
SetThreadPriorityBoost
SetVolumeLabelA
SetVolumeMountPointW
SetupComm
SuspendThread
TerminateJobObject
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransmitCommChar
UnmapViewOfFile
UnregisterWaitEx
UpdateResourceA
UpdateResourceW
VerLanguageNameW
VerifyVersionInfoW
VirtualFree
VirtualProtectEx
VirtualQuery
VirtualUnlock
WaitCommEvent
WaitNamedPipeA
WaitNamedPipeW
WinExec
WriteConsoleOutputCharacterA
WritePrivateProfileStringW
WriteProcessMemory
WriteProfileStringW
_lcreat
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpy
lstrcpyA
lstrcpyn
lstrcpynA
lstrlenA
CreateFileA
GetVolumeInformationW
VirtualAlloc
SendMessageTimeoutW
SendMessageW
SendNotifyMessageA
SetCapture
SetClassLongA
SetClassLongW
SetClipboardViewer
SetCursor
SetDlgItemInt
SetDlgItemTextW
SetDoubleClickTime
SetKeyboardState
SetMenu
SetMenuInfo
SetMenuItemBitmaps
SetMenuItemInfoW
SetProcessWindowStation
SetRectEmpty
SetThreadDesktop
SetUserObjectInformationA
SetUserObjectInformationW
SetUserObjectSecurity
SetWinEventHook
SetWindowContextHelpId
SetWindowPlacement
SetWindowsHookA
SetWindowsHookW
ShowOwnedPopups
ShowScrollBar
ShowWindowAsync
SubtractRect
SwapMouseButton
SystemParametersInfoA
TabbedTextOutA
TileChildWindows
ToAscii
TrackMouseEvent
TranslateAccelerator
TranslateAcceleratorA
TranslateMessage
UnhookWindowsHook
UnhookWindowsHookEx
UnpackDDElParam
UnregisterClassA
UnregisterDeviceNotification
UnregisterHotKey
UpdateLayeredWindow
VkKeyScanA
VkKeyScanExA
VkKeyScanW
WaitMessage
WindowFromPoint
mouse_event
SendMessageTimeoutA
SendInput
ScrollWindow
ReuseDDElParam
RegisterWindowMessageW
RegisterWindowMessageA
RegisterDeviceNotificationA
RegisterClipboardFormatA
RegisterClassW
RegisterClassExW
RealGetWindowClassA
RealGetWindowClass
PostMessageW
PeekMessageW
OpenWindowStationW
OpenDesktopW
OpenDesktopA
OffsetRect
NotifyWinEvent
MonitorFromWindow
ModifyMenuA
MessageBoxIndirectA
MessageBoxExW
MapVirtualKeyExW
MapVirtualKeyExA
MapVirtualKeyA
MapDialogRect
LookupIconIdFromDirectoryEx
LookupIconIdFromDirectory
LockSetForegroundWindow
LoadMenuA
LoadKeyboardLayoutW
LoadIconW
LoadIconA
LoadAcceleratorsW
IsWindow
IsHungAppWindow
IsDialogMessage
IsChild
IsCharLowerA
InvertRect
InsertMenuW
InsertMenuItemA
InsertMenuA
InSendMessage
ImpersonateDdeClientWindow
IMPQueryIMEA
IMPGetIMEA
HiliteMenuItem
HideCaret
GrayStringW
GrayStringA
GetWindowRgn
GetWindowPlacement
GetWindowModuleFileNameW
GetWindowModuleFileName
GetWindowLongA
GetWindowInfo
GetWindowDC
GetUserObjectSecurity
GetUserObjectInformationW
GetUpdateRect
GetThreadDesktop
GetTabbedTextExtentW
GetScrollBarInfo
GetPropW
GetProcessWindowStation
GetProcessDefaultLayout
GetPriorityClipboardFormat
GetOpenClipboardWindow
GetMouseMovePointsEx
GetMonitorInfoW
GetMonitorInfoA
GetMessageW
GetMessageTime
GetMessagePos
GetMessageExtraInfo
GetMenuStringA
GetMenuItemInfoW
GetMenuItemCount
GetMenuInfo
GetMenuDefaultItem
GetMenuContextHelpId
GetMenuBarInfo
GetMenu
GetListBoxInfo
GetLastActivePopup
GetKeyboardLayoutNameW
GetKeyboardLayoutNameA
GetKeyboardLayout
GetKeyNameTextA
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItemTextA
GetDlgItem
GetDlgCtrlID
GetCursorInfo
GetComboBoxInfo
GetClipboardViewer
GetClipboardFormatNameA
GetClipboardData
GetClipCursor
GetAsyncKeyState
FindWindowW
FindWindowA
FillRect
ExcludeUpdateRgn
EnumWindows
EnumWindowStationsW
EnumThreadWindows
EnumDisplaySettingsExW
EnumDisplaySettingsExA
EnumDisplayDevicesA
EnumDesktopsA
EndTask
EndDialog
EditWndProc
DrawStateW
DrawIconEx
DrawFocusRect
DrawEdge
DragDetect
DlgDirSelectExW
DlgDirSelectExA
DlgDirSelectComboBoxExW
DlgDirListComboBoxA
DlgDirListA
DispatchMessageW
DispatchMessageA
DialogBoxParamW
DestroyWindow
DestroyAcceleratorTable
DeleteMenu
DeferWindowPos
DefWindowProcW
DefMDIChildProcW
DefFrameProcA
DdeUninitialize
DdeUnaccessData
DdeSetQualityOfService
DdeQueryStringW
DdeQueryNextServer
DdeQueryConvInfo
DdeNameService
DdeKeepStringHandle
DdeGetLastError
DdeGetData
DdeDisconnect
DdeCreateDataHandle
DdeConnectList
CreateWindowStationW
CreateWindowStationA
CreateWindowExA
CreateIconIndirect
CreateIconFromResourceEx
CreateDialogIndirectParamW
CreateDialogIndirectParamA
CreateDesktopW
CreateDesktopA
CreateAcceleratorTableA
CountClipboardFormats
CopyAcceleratorTableW
CopyAcceleratorTableA
CloseWindow
ClipCursor
CheckMenuRadioItem
CharUpperBuffW
CharPrevExA
CharNextW
CharLowerW
CharLowerBuffA
CharLowerA
ChangeMenuW
ChangeMenuA
ChangeDisplaySettingsA
CascadeWindows
CallWindowProcW
CallWindowProcA
CallMsgFilterA
CallMsgFilter
BroadcastSystemMessageA
BroadcastSystemMessage
BringWindowToTop
AllowSetForegroundWindow
GetClipboardOwner
RegOpenKeyW
RegCloseKey
UrlUnescapeA
UrlIsW
UrlIsOpaqueW
UrlIsOpaqueA
UrlIsNoHistoryW
UrlIsNoHistoryA
UrlIsA
UrlHashW
UrlHashA
UrlGetPartW
UrlGetPartA
UrlGetLocationW
UrlGetLocationA
UrlEscapeW
UrlEscapeA
UrlCreateFromPathW
UrlCreateFromPathA
UrlCompareA
UrlCombineA
UrlCanonicalizeA
StrTrimA
StrToIntW
StrToIntExW
StrToIntA
StrStrW
StrStrIW
StrStrIA
StrStrA
StrSpnW
StrRetToStrW
StrRetToStrA
StrRetToBufW
StrRetToBufA
StrRStrIW
StrRStrIA
StrRChrIW
StrRChrIA
StrRChrA
StrPBrkW
StrNCatW
StrNCatA
StrIsIntlEqualW
StrIsIntlEqualA
StrFormatByteSizeW
StrFormatByteSizeA
StrFormatByteSize64A
StrDupW
StrCpyW
StrCpyNW
StrCmpIW
StrChrW
StrChrIA
StrChrA
StrCatW
StrCSpnA
SHStrDupW
SHStrDupA
SHSkipJunction
SHSetValueW
SHRegWriteUSValueA
SHRegSetUSValueW
SHRegSetUSValueA
SHRegSetPathW
SHRegSetPathA
SHRegQueryUSValueW
SHRegQueryUSValueA
SHRegQueryInfoUSKeyA
SHRegOpenUSKeyW
SHRegGetUSValueW
SHRegGetPathW
SHRegGetPathA
SHRegEnumUSValueW
SHRegEnumUSValueA
SHRegEnumUSKeyW
SHRegDeleteUSValueA
SHRegDeleteEmptyUSKeyA
SHRegCreateUSKeyW
SHRegCreateUSKeyA
SHRegCloseUSKey
SHQueryValueExA
SHQueryInfoKeyW
SHOpenRegStreamW
SHOpenRegStream2W
SHOpenRegStream2A
SHIsLowMemoryMachine
SHGetValueW
SHGetValueA
SHGetThreadRef
SHGetInverseCMAP
SHEnumValueW
SHEnumValueA
SHEnumKeyExW
SHDeleteValueW
SHDeleteValueA
SHDeleteKeyW
SHCreateStreamOnFileW
SHCreateStreamOnFileA
SHCopyKeyW
PathUnquoteSpacesA
PathUnmakeSystemFolderW
PathUnmakeSystemFolderA
PathUndecorateW
PathUndecorateA
PathUnExpandEnvStringsW
PathUnExpandEnvStringsA
PathStripToRootW
PathStripToRootA
PathStripPathW
PathSetDlgItemPathW
PathSetDlgItemPathA
PathSearchAndQualifyA
PathRenameExtensionA
PathRemoveFileSpecA
PathRemoveExtensionW
PathRemoveBlanksW
PathRemoveBlanksA
PathRemoveArgsW
PathRelativePathToA
PathQuoteSpacesW
PathQuoteSpacesA
PathParseIconLocationW
PathParseIconLocationA
PathMatchSpecW
PathMakeSystemFolderW
PathMakeSystemFolderA
PathMakePrettyW
PathMakePrettyA
PathIsURLW
PathIsURLA
PathIsUNCW
PathIsUNCServerW
PathIsUNCServerShareA
PathIsUNCServerA
PathIsSystemFolderW
PathIsSystemFolderA
PathIsSameRootW
PathIsRootW
PathIsRootA
PathIsRelativeW
PathIsPrefixA
PathIsLFNFileSpecW
PathIsLFNFileSpecA
PathIsDirectoryEmptyW
PathIsDirectoryA
PathIsContentTypeW
PathIsContentTypeA
PathGetDriveNumberW
PathGetDriveNumberA
PathGetCharTypeW
PathFindSuffixArrayW
PathFindSuffixArrayA
PathFindOnPathW
PathFindNextComponentW
PathFindNextComponentA
PathFindFileNameW
PathFindFileNameA
PathFindExtensionW
PathFindExtensionA
PathCreateFromUrlA
PathCompactPathW
PathCompactPathExW
PathCompactPathA
PathCommonPrefixW
PathCommonPrefixA
PathCombineW
PathCanonicalizeW
PathAppendA
PathAddExtensionW
PathAddExtensionA
PathAddBackslashW
PathAddBackslashA
IntlStrEqWorkerW
HashData
ColorAdjustLuma
ChrCmpIW
ChrCmpIA
AssocQueryStringByKeyW
AssocQueryKeyA
AssocCreate
wnsprintfA
wvnsprintfW
UrlUnescapeW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ