Static task
static1
Behavioral task
behavioral1
Sample
fefab6aaa099fa1846eb76ff5635417f_JaffaCakes118.exe
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral2
Sample
fefab6aaa099fa1846eb76ff5635417f_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
fefab6aaa099fa1846eb76ff5635417f_JaffaCakes118
-
Size
732KB
-
MD5
fefab6aaa099fa1846eb76ff5635417f
-
SHA1
5ec96d86dd48bd00b6d4e8fee1be99084c881ee2
-
SHA256
8b33e8572026ba9c8452920e80cc5e99233ccc82fc0d83d19ca07f65687bca93
-
SHA512
ee8f4bd0c7a10466332fc36f1bd851e5dc8b68ac8be51981b340cd789a6a32b0cf813883086356825cb3251df00711eee720e8dcc23e6ceb3df9e3512f642ed3
-
SSDEEP
12288:5w+MB1MLiSG2aIkgFxDT6S36863pWRs77+OCvzIx0RUpRMnFSj0kC4+AefLW0ZZz:GBUG28u5TR36ppL7y3IaOpKncVCLzPD3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fefab6aaa099fa1846eb76ff5635417f_JaffaCakes118
Files
-
fefab6aaa099fa1846eb76ff5635417f_JaffaCakes118.exe windows:4 windows x86 arch:x86
8782d0f74f42bf5f224f29cc9bffe226
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
winspool.drv
AddPrinterDriverA
EnumPrinterDriversA
GetPrinterA
OpenPrinterA
AddPrinterA
DeviceCapabilitiesA
ClosePrinter
SetPrinterA
DocumentPropertiesA
ord204
GetPrinterDriverDirectoryA
GetJobA
comctl32
ImageList_BeginDrag
ImageList_Create
ImageList_GetDragImage
ImageList_EndDrag
ImageList_GetIconSize
ord17
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Merge
ImageList_Destroy
CreatePropertySheetPageA
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_DragMove
ImageList_Replace
ImageList_DrawEx
InitCommonControlsEx
ImageList_DrawIndirect
PropertySheetA
ImageList_Remove
ImageList_Draw
CreateStatusWindowW
ImageList_DragLeave
ImageList_SetImageCount
ImageList_ReplaceIcon
_TrackMouseEvent
CreateToolbarEx
ImageList_GetImageInfo
ImageList_SetDragCursorImage
ImageList_GetBkColor
ImageList_GetIcon
ImageList_DragEnter
DestroyPropertySheetPage
user32
TranslateMessage
GetDesktopWindow
SetMenuItemInfoW
GetWindowThreadProcessId
SetWindowsHookExW
CreateWindowExA
TrackPopupMenu
CharNextA
SystemParametersInfoW
ChangeClipboardChain
LoadStringW
UnionRect
UnhookWindowsHookEx
GetDlgCtrlID
IntersectRect
DefMDIChildProcW
GetNextDlgGroupItem
GetAsyncKeyState
TrackPopupMenuEx
GetPropA
SetMenu
UpdateWindow
FrameRect
IsZoomed
SetMenuContextHelpId
CopyRect
GetWindow
GrayStringA
SetTimer
DrawStateW
SetWindowLongW
GetClassInfoExW
GetDlgItem
SetWindowLongA
CharUpperW
MessageBeep
DrawTextW
WindowFromDC
EqualRect
SetDlgItemTextW
GetCursorPos
CreateMenu
GetWindowTextLengthW
ClientToScreen
PtInRect
GetClassLongA
RegisterClassExA
LoadAcceleratorsW
GetUpdateRect
DragDetect
BeginDeferWindowPos
InsertMenuItemA
DialogBoxIndirectParamA
GetFocus
IsRectEmpty
FillRect
GetIconInfo
CharUpperA
SetWindowPlacement
CharLowerA
EnableMenuItem
LoadAcceleratorsA
DrawTextA
IsIconic
RegisterClipboardFormatA
GetMenuItemInfoA
SetWindowTextW
ExcludeUpdateRgn
CreateWindowExW
GetMessageW
DefWindowProcA
GetMenuCheckMarkDimensions
RemoveMenu
GetParent
ReuseDDElParam
CreateDialogIndirectParamA
PostQuitMessage
SetCapture
IsMenu
GetKeyNameTextW
SetWindowsHookExA
GetKeyboardLayout
mouse_event
DdeGetLastError
GetWindowRect
DefDlgProcA
DrawEdge
IsWindowVisible
CharLowerW
CopyAcceleratorTableA
SetScrollInfo
ReleaseCapture
SetCaretPos
SetWindowTextA
GetActiveWindow
CheckRadioButton
CopyImage
EnableWindow
CheckDlgButton
DispatchMessageW
CreateCaret
CloseClipboard
GetClassInfoA
SetMenuItemBitmaps
ReleaseDC
GetMessagePos
SendMessageA
SetForegroundWindow
UnpackDDElParam
LoadMenuA
GetClassNameA
IsWindow
MonitorFromWindow
ShowWindow
CreatePopupMenu
GetWindowPlacement
ShowCaret
EndDeferWindowPos
DestroyIcon
OpenClipboard
GetSysColorBrush
LoadCursorW
SetMenuDefaultItem
SetScrollRange
MapWindowPoints
InvalidateRect
SetWindowContextHelpId
SendDlgItemMessageW
SetCursorPos
DrawFrameControl
BringWindowToTop
GetMessageA
UnregisterClassA
EndDialog
IsDlgButtonChecked
AdjustWindowRectEx
GetWindowTextLengthA
PeekMessageW
EndPaint
RemovePropW
TabbedTextOutA
HideCaret
MoveWindow
EmptyClipboard
GetScrollPos
DefMDIChildProcA
GetWindowLongW
DispatchMessageA
GetMenuStringA
IsClipboardFormatAvailable
PostThreadMessageW
MessageBoxA
GetMenuItemCount
CheckMenuItem
GetSysColor
LoadIconW
OemToCharA
PostMessageW
GetWindowLongA
OffsetRect
wsprintfA
GetWindowTextA
EnumChildWindows
LoadBitmapW
CallWindowProcA
InsertMenuA
InflateRect
GetKeyState
CallNextHookEx
GetLastActivePopup
TranslateMDISysAccel
CreateIconFromResourceEx
GetClipboardData
LoadCursorA
PeekMessageA
GetTabbedTextExtentA
SetCursor
GetSystemMetrics
GetMenuItemID
GetClientRect
SetFocus
SystemParametersInfoA
DrawIcon
TranslateAcceleratorA
SetClipboardData
GetDC
ExitWindowsEx
DrawFocusRect
SetRect
KillTimer
PostMessageA
IsChild
IsDialogMessageW
DrawIconEx
GetSystemMenu
WindowFromPoint
AppendMenuA
WaitMessage
DeleteMenu
ValidateRect
DialogBoxParamA
IsDialogMessageA
GetCapture
UnregisterHotKey
ModifyMenuA
IsWindowEnabled
ScrollWindow
SetPropA
EnumClipboardFormats
DestroyMenu
SendDlgItemMessageA
GetClassInfoExA
SetActiveWindow
GetMenuState
SetParent
LockWindowUpdate
GetForegroundWindow
GetMenu
BeginPaint
LoadMenuW
GetTopWindow
CharToOemA
GetWindowTextW
SetWindowPos
DestroyWindow
SetDlgItemTextA
RegisterClassA
DestroyCursor
RemovePropA
CreateAcceleratorTableA
LoadStringA
PostThreadMessageA
ScreenToClient
DeferWindowPos
LoadBitmapA
MessageBoxW
wsprintfW
GetScrollInfo
GetNextDlgTabItem
RegisterWindowMessageA
GetSubMenu
SetMenuItemInfoA
GetMessageTime
LoadIconA
advapi32
CryptGetHashParam
RegSetValueExA
IsValidSid
CryptHashData
RegSetValueExW
RegQueryInfoKeyA
RegQueryValueA
RegDeleteKeyW
AdjustTokenPrivileges
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyW
CryptAcquireContextA
RegDeleteValueW
RegSetValueA
RegEnumKeyW
GetFileSecurityA
GetUserNameA
RegQueryInfoKeyW
AllocateAndInitializeSid
OpenServiceA
CloseServiceHandle
OpenSCManagerA
RegCreateKeyA
GetLengthSid
SetFileSecurityA
SetSecurityDescriptorDacl
AccessCheck
CryptCreateHash
RegCloseKey
RegCreateKeyW
CreateServiceW
SetSecurityDescriptorOwner
RegCreateKeyExW
CryptDeriveKey
RegQueryValueExW
LookupPrivilegeValueW
GetTokenInformation
CryptDestroyKey
RegCreateKeyExA
OpenThreadToken
RegOpenCurrentUser
RevertToSelf
RegEnumKeyA
CopySid
CryptDestroyHash
RegOpenKeyExW
OpenProcessToken
AddAccessAllowedAce
ImpersonateSelf
RegEnumKeyExA
RegOpenKeyA
SetFileSecurityW
RegEnumValueA
SetSecurityDescriptorGroup
DeleteService
CryptEncrypt
RegOpenKeyExA
LookupPrivilegeValueA
GetAclInformation
IsValidSecurityDescriptor
RegQueryValueExA
shell32
ShellExecuteA
Shell_NotifyIconW
SHGetSpecialFolderPathA
ExtractIconA
SHAppBarMessage
DragFinish
DragAcceptFiles
ExtractIconExA
Shell_NotifyIconA
SHChangeNotify
DragQueryFileA
SHGetSpecialFolderLocation
ord155
SHBrowseForFolderA
SHGetDesktopFolder
ShellExecuteExW
ShellExecuteExA
SHGetMalloc
SHGetPathFromIDListA
ole32
OleInitialize
StringFromGUID2
RevokeDragDrop
ReleaseStgMedium
ReadClassStg
CreateGenericComposite
OleQueryLinkFromData
OleFlushClipboard
CoTaskMemRealloc
CoImpersonateClient
SetConvertStg
StgCreateDocfileOnILockBytes
CoGetClassObject
CoInitialize
StgOpenStorage
CoRegisterClassObject
OleIsCurrentClipboard
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
CoMarshalInterThreadInterfaceInStream
OleRun
CoRevokeClassObject
OleCreateMenuDescriptor
GetHGlobalFromILockBytes
OleSetContainedObject
OleRegGetUserType
OleDestroyMenuDescriptor
OleCreateStaticFromData
CoUnmarshalInterface
CLSIDFromString
CreateBindCtx
CreateItemMoniker
CoDisconnectObject
StgOpenStorageOnILockBytes
CoLoadLibrary
StgIsStorageFile
OleGetClipboard
OleLockRunning
StringFromCLSID
CoSuspendClassObjects
OleTranslateAccelerator
CoCreateInstance
CoUninitialize
OleIsRunning
CoTaskMemAlloc
CreateDataAdviseHolder
OleSetClipboard
ProgIDFromCLSID
OleQueryCreateFromData
OleLoad
WriteFmtUserTypeStg
CoTreatAsClass
CLSIDFromProgID
IsAccelerator
OleDuplicateData
OleSaveToStream
CoFreeUnusedLibraries
StgCreateDocfile
OleLoadFromStream
CreateOleAdviseHolder
OleRegEnumVerbs
CoResumeClassObjects
GetRunningObjectTable
ReadFmtUserTypeStg
OleUninitialize
CoTaskMemFree
WriteClassStg
CoRegisterMessageFilter
GetClassFile
CoCreateInstanceEx
OleRegGetMiscStatus
StgIsStorageILockBytes
wininet
InternetCrackUrlA
InternetOpenA
InternetCanonicalizeUrlW
InternetCloseHandle
InternetQueryDataAvailable
InternetQueryOptionW
InternetCrackUrlW
HttpSendRequestA
InternetTimeFromSystemTime
InternetSetStatusCallbackW
HttpQueryInfoA
InternetErrorDlg
InternetGetConnectedState
InternetQueryOptionA
InternetConnectW
InternetCanonicalizeUrlA
HttpSendRequestW
InternetSetStatusCallback
InternetCheckConnectionA
InternetSetFilePointer
HttpOpenRequestA
DetectAutoProxyUrl
InternetOpenW
InternetTimeToSystemTime
HttpAddRequestHeadersW
InternetReadFile
gdi32
StrokeAndFillPath
AbortDoc
GetColorAdjustment
OffsetWindowOrgEx
GetNearestPaletteIndex
SetStretchBltMode
CreatePatternBrush
SetMapperFlags
GetCharABCWidthsFloatA
CreateDIBSection
GetBitmapBits
GetCharWidthFloatA
SetTextJustification
EnumMetaFile
SetWorldTransform
GetTextCharsetInfo
GetGlyphOutlineA
ScaleViewportExtEx
ScaleWindowExtEx
UpdateColors
CreateICA
SelectObject
RoundRect
SetDIBits
EndPage
GetWindowExtEx
EndPath
GetCharABCWidthsA
CreateFontA
GetObjectW
CreateFontIndirectW
RectVisible
GetBkColor
Polyline
ExtTextOutW
GetKerningPairsA
CreateEllipticRgn
GdiComment
AngleArc
GetStretchBltMode
SetColorAdjustment
Chord
ExtTextOutA
PolyDraw
MaskBlt
GetBoundsRect
GetDeviceCaps
GetViewportExtEx
PatBlt
SelectPalette
GetViewportOrgEx
GetTextColor
RestoreDC
SetPaletteEntries
ExcludeClipRect
AbortPath
TextOutW
GetTextFaceA
GetTextAlign
EnumFontFamiliesExA
Polygon
GetObjectType
SetBkMode
LineTo
GetCurrentPositionEx
OffsetRgn
PtInRegion
PolylineTo
ExtCreateRegion
SetRectRgn
PlgBlt
GetStockObject
PlayMetaFileRecord
GetTextExtentPointW
CreateRectRgnIndirect
SetTextColor
SetPolyFillMode
UnrealizeObject
CreateICW
OffsetViewportOrgEx
GetPixel
ExtCreatePen
SetBoundsRect
EqualRgn
GetRegionData
GetMapMode
CombineRgn
TextOutA
SetDIBColorTable
EndDoc
SaveDC
SetWindowExtEx
SetBrushOrgEx
FillRgn
GetCurrentObject
CreateRoundRectRgn
GetCharWidthA
AnimatePalette
Ellipse
CreateDCW
GetDIBits
CreateRectRgn
GetTextCharacterExtra
LPtoDP
CreateDIBPatternBrushPt
SelectClipPath
CreateDiscardableBitmap
SetTextAlign
CreateSolidBrush
GetFontData
CreatePolygonRgn
FloodFill
CreateCompatibleBitmap
GetBitmapDimensionEx
GetMiterLimit
CreatePenIndirect
SetAbortProc
StretchDIBits
PolyBezier
CreateBitmap
GetTextMetricsW
SetROP2
PaintRgn
CopyMetaFileA
SetMiterLimit
RealizePalette
GetTextFaceW
CreatePen
GetTextMetricsA
ArcTo
DeleteDC
Escape
DrawEscape
ResetDCA
BeginPath
SetViewportExtEx
GetObjectA
CreateBitmapIndirect
SelectClipRgn
ExtEscape
SetMapMode
PtVisible
CreateDCA
GetBrushOrgEx
SetBitmapDimensionEx
SetDIBitsToDevice
GetSystemPaletteEntries
GetCharWidthW
StretchBlt
CreateDIBitmap
EnumObjects
MoveToEx
SetPixel
SetWindowOrgEx
SetTextCharacterExtra
CreateHatchBrush
GetArcDirection
GetTextExtentPointA
SetViewportOrgEx
SetArcDirection
GetPaletteEntries
ExtFloodFill
GetNearestColor
FillPath
GetRgnBox
PolyPolygon
StartDocA
Arc
GetROP2
CreateCompatibleDC
CreatePalette
GetTextExtentPoint32A
PathToRegion
WidenPath
ExtSelectClipRgn
CreateEnhMetaFileA
GetPolyFillMode
GetClipBox
IntersectClipRect
CreateBrushIndirect
SetBkColor
CreateFontIndirectA
StrokePath
DPtoLP
GetTextExtentPoint32W
GetWindowOrgEx
BitBlt
PlayMetaFile
StartPage
FrameRgn
ResizePalette
DeleteObject
SetPixelV
GetClipRgn
CloseEnhMetaFile
GetAspectRatioFilterEx
Rectangle
kernel32
_lwrite
FlushInstructionCache
CreateFileMappingA
GetDiskFreeSpaceW
SetFileAttributesA
SuspendThread
MapViewOfFile
GetSystemDirectoryA
Sleep
LocalAlloc
_lcreat
GetEnvironmentStringsW
GlobalGetAtomNameA
WinExec
MultiByteToWideChar
GetWindowsDirectoryA
GlobalDeleteAtom
GetVersionExA
TlsSetValue
GetStringTypeExA
IsValidLocale
SizeofResource
FreeLibrary
TlsGetValue
HeapSize
CompareStringW
GetSystemTimeAsFileTime
LocalFree
GetCPInfo
GetLocalTime
GetPrivateProfileIntA
lstrcmpiW
SetUnhandledExceptionFilter
PeekNamedPipe
EnterCriticalSection
HeapCreate
GetDiskFreeSpaceA
LeaveCriticalSection
IsDebuggerPresent
CompareStringA
SetEndOfFile
LockResource
UnhandledExceptionFilter
IsProcessorFeaturePresent
CopyFileA
SetLastError
OutputDebugStringW
OpenMutexA
GetStringTypeA
IsBadCodePtr
GetCurrentThread
GetProcessHeap
GetUserDefaultLCID
GetCurrentThreadId
InterlockedDecrement
SetFilePointer
WaitForSingleObject
GetEnvironmentVariableA
GetLastError
GetSystemDefaultLangID
GetTimeZoneInformation
lstrcpynA
GetFileSize
LCMapStringA
TlsFree
DuplicateHandle
GetThreadLocale
WaitForMultipleObjects
GetPrivateProfileStringA
VirtualQuery
LocalFileTimeToFileTime
GetTickCount
CreateProcessW
GetConsoleOutputCP
FatalAppExitA
SetEnvironmentVariableA
DeleteFileW
HeapReAlloc
GlobalHandle
GetStartupInfoA
GetModuleHandleW
GetStdHandle
CloseHandle
GetConsoleMode
ResetEvent
HeapFree
SetHandleCount
lstrcpyA
GetFileInformationByHandle
LoadLibraryA
GetTempPathW
lstrcmpiA
GlobalUnlock
CreateFileW
SetStdHandle
VirtualFree
GetDateFormatA
FindResourceA
SetConsoleCtrlHandler
lstrcmpW
FindClose
GetFileAttributesA
InitializeCriticalSectionAndSpinCount
CreateDirectoryW
_lopen
GetSystemDirectoryW
SetThreadPriority
GetStartupInfoW
GetModuleFileNameW
GetOEMCP
GetEnvironmentStrings
GetCommandLineA
WritePrivateProfileStringA
GetCurrentProcessId
SetEvent
SetEnvironmentVariableW
GetSystemTime
GetCurrentProcess
HeapAlloc
GlobalFree
IsValidCodePage
GetPrivateProfileStringW
ConvertDefaultLocale
UnmapViewOfFile
VirtualAlloc
lstrcatW
Process32NextW
GetOverlappedResult
TerminateProcess
_llseek
GetStringTypeW
GetComputerNameA
FileTimeToLocalFileTime
UnlockFile
IsBadReadPtr
WriteFile
GetLocaleInfoA
GetModuleFileNameA
GlobalReAlloc
GetCurrentDirectoryA
FindNextFileA
FormatMessageW
GlobalAddAtomA
lstrlenW
GetConsoleCP
SetPriorityClass
GetProcAddress
InterlockedExchange
GetFileType
GetFileAttributesW
FormatMessageA
MulDiv
GetModuleHandleA
DeleteFileA
GetCommandLineW
GetTimeFormatA
RtlUnwind
GetStringTypeExW
QueryPerformanceCounter
WideCharToMultiByte
GetLocaleInfoW
GetACP
Process32FirstW
GlobalFindAtomA
GetProcessVersion
CreateFileA
GetTimeFormatW
CreateThread
ExitProcess
GetTempPathA
InterlockedCompareExchange
FreeEnvironmentStringsW
GlobalAlloc
SetErrorMode
GetFullPathNameA
GetFileTime
FlushFileBuffers
EnumSystemLocalesA
InterlockedIncrement
WriteConsoleW
FindFirstFileA
FreeResource
GetVersion
ReadFile
TlsAlloc
lstrlenA
LocalReAlloc
GlobalLock
CreateMutexA
GetDateFormatW
InitializeCriticalSection
DeleteCriticalSection
LCMapStringW
RaiseException
LoadResource
HeapDestroy
WriteConsoleA
FreeEnvironmentStringsA
FileTimeToSystemTime
SetFileAttributesW
LockFile
FindNextFileW
SystemTimeToTzSpecificLocalTime
Sections
.text Size: 96KB - Virtual size: 93KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 472KB - Virtual size: 469KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 140KB - Virtual size: 158KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ