d:\keedtuxe.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
071eb41de300b0d595e3dc20118ca5c3_JaffaCakes118.exe
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
071eb41de300b0d595e3dc20118ca5c3_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
071eb41de300b0d595e3dc20118ca5c3_JaffaCakes118
-
Size
288KB
-
MD5
071eb41de300b0d595e3dc20118ca5c3
-
SHA1
4c00f64d6468feb23b2915c0ec14204b0f733ef0
-
SHA256
542abd5f2892d1f260734341b66b23d32e35719958c580fd579d5ab73f9dd8cb
-
SHA512
9ec2d77e2aa0012792ed175effb916b9bc7629bd5cd72dbc49deb9c2a65fe864ee271e0c924e24236d8d72651b8dbd5c709af5d63657b348a05105dd82aea375
-
SSDEEP
6144:P5YqbEoIA9z4zJlC0kV+JCKGltnazdvoTASdI8:PaU/IA9z6JsVV+4hWYd
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 071eb41de300b0d595e3dc20118ca5c3_JaffaCakes118
Files
-
071eb41de300b0d595e3dc20118ca5c3_JaffaCakes118.exe windows:4 windows x86 arch:x86
852bb619f8c8ff2df032956e440a6102
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ole32
OleSave
CoFreeUnusedLibraries
CoGetMalloc
StringFromCLSID
WriteClassStg
OleLockRunning
OleTranslateAccelerator
StgIsStorageFile
OleRegGetUserType
CoCreateInstance
OleRun
CreateBindCtx
CoRegisterClassObject
CLSIDFromProgID
OleRegEnumVerbs
RegisterDragDrop
OleCreateMenuDescriptor
OleInitialize
StgOpenStorage
OleGetClipboard
OleSetContainedObject
OleIsRunning
OleDuplicateData
StringFromGUID2
OleSetMenuDescriptor
CreateDataAdviseHolder
OleIsCurrentClipboard
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
OleCreateFromData
OleLoad
CoRevokeClassObject
RevokeDragDrop
OleGetIconOfClass
OleCreate
CoLoadLibrary
ReadFmtUserTypeStg
CoTaskMemFree
CoGetClassObject
OleDestroyMenuDescriptor
GetHGlobalFromILockBytes
OleQueryLinkFromData
CreateStreamOnHGlobal
IsAccelerator
CoInitialize
ReleaseStgMedium
CreateFileMoniker
CoUninitialize
CreateItemMoniker
CoLockObjectExternal
OleSaveToStream
DoDragDrop
CoRegisterMessageFilter
SetConvertStg
OleCreateLinkToFile
OleCreateLinkFromData
ReadClassStg
WriteClassStm
StgOpenStorageOnILockBytes
OleFlushClipboard
OleUninitialize
CoQueryProxyBlanket
StgCreateDocfile
CreateILockBytesOnHGlobal
CreateOleAdviseHolder
WriteFmtUserTypeStg
OleQueryCreateFromData
OleRegGetMiscStatus
GetRunningObjectTable
OleLoadFromStream
OleCreateFromFile
CLSIDFromString
user32
GetSysColorBrush
OpenClipboard
DrawTextW
RegisterWindowMessageA
wvsprintfA
EqualRect
GetClassInfoExW
SetWindowContextHelpId
ModifyMenuA
GrayStringW
CreateWindowExA
GetMenuItemInfoA
GetWindowTextA
EndPaint
EndDialog
EnableMenuItem
GetMenuItemID
DlgDirListA
UnregisterClassA
IsWindowEnabled
TrackMouseEvent
IsDlgButtonChecked
GetDlgItem
LoadIconA
CharUpperA
GetDialogBaseUnits
LoadCursorW
DlgDirSelectComboBoxExA
PostQuitMessage
TranslateMessage
ShowOwnedPopups
LoadAcceleratorsA
SetWindowsHookExW
PeekMessageA
CharNextA
GetSystemMetrics
GetMenuDefaultItem
SystemParametersInfoA
SetWindowPos
DrawTextExA
DestroyIcon
GetMenuItemInfoW
MapWindowPoints
DeferWindowPos
BeginPaint
ShowWindow
SetScrollInfo
LoadStringA
FindWindowA
GetMessageA
SetActiveWindow
SetWindowPlacement
LoadMenuIndirectA
DrawEdge
GetWindowContextHelpId
GetSysColor
DdeCreateStringHandleA
DrawTextA
DrawIconEx
PostMessageA
GetClipboardData
KillTimer
EnumChildWindows
AppendMenuA
GetScrollInfo
SendDlgItemMessageA
GetClassLongA
InvalidateRect
ArrangeIconicWindows
GetNextDlgTabItem
SetMenu
IsZoomed
AdjustWindowRect
MapDialogRect
TrackPopupMenuEx
EnumWindows
GetCursor
SetCursor
WindowFromPoint
RemoveMenu
GetWindowLongA
GetScrollRange
CallNextHookEx
CharUpperW
GetActiveWindow
DrawMenuBar
DrawFrameControl
GetWindowTextLengthA
GetParent
DragDetect
DdeQueryStringA
CloseClipboard
DdeUninitialize
ClientToScreen
LoadBitmapA
GetClassNameW
SetMenuItemInfoA
GrayStringA
DefWindowProcA
DestroyCursor
SetCaretPos
CopyAcceleratorTableA
GetKeyboardLayout
GetSubMenu
TabbedTextOutA
SetWindowTextA
DrawFocusRect
GetDlgCtrlID
GetWindowTextLengthW
SetScrollPos
GetClassInfoA
GetFocus
GetMessagePos
InsertMenuA
IntersectRect
FillRect
IsWindowVisible
TranslateMDISysAccel
ScreenToClient
SetParent
LoadStringW
EnableWindow
GetDCEx
MessageBoxA
wsprintfA
RegisterClipboardFormatA
DdeClientTransaction
UnpackDDElParam
MessageBeep
GetWindowLongW
IsWindow
SetWindowLongA
RedrawWindow
SendMessageA
PostThreadMessageA
IsDialogMessageA
GetMenu
SendMessageW
SystemParametersInfoW
ReleaseDC
GetMenuContextHelpId
PeekMessageW
GetMenuCheckMarkDimensions
RemovePropA
GetDesktopWindow
GetKeyboardState
DialogBoxParamW
CopyRect
SetForegroundWindow
EmptyClipboard
GetWindowRgn
IsWindowUnicode
SetMenuItemBitmaps
CreateMenu
SetWindowRgn
SetCapture
SetPropA
SetTimer
CheckMenuRadioItem
GetMenuState
IsMenu
DdeFreeStringHandle
GetClientRect
GetLastActivePopup
InflateRect
SetCursorPos
ChangeClipboardChain
WinHelpA
IsIconic
GetPropA
CheckDlgButton
ReuseDDElParam
CreateDialogParamA
DestroyMenu
GetScrollPos
OffsetRect
LoadBitmapW
GetKeyState
SendDlgItemMessageW
TrackPopupMenu
GetKeyboardLayoutList
CreateDialogIndirectParamW
GetDC
ValidateRect
GetWindowRect
CallWindowProcA
DlgDirSelectExA
InsertMenuItemA
DrawStateA
LockWindowUpdate
CopyIcon
IsRectEmpty
DrawTextExW
MoveWindow
AdjustWindowRectEx
SetFocus
CheckRadioButton
RegisterClassA
UnionRect
FrameRect
GetWindowDC
FlashWindow
GetMessageTime
GetClassNameA
CallWindowProcW
SetWindowLongW
CreatePopupMenu
GetCapture
TabbedTextOutW
PtInRect
GetTopWindow
UnregisterHotKey
ScrollWindow
ExcludeUpdateRgn
RegisterWindowMessageW
DispatchMessageA
SetDlgItemInt
DlgDirListComboBoxA
DdeConnect
DestroyWindow
GetWindow
GetClassInfoW
DeleteMenu
RegisterClassExA
LoadCursorA
SetRect
GetCursorPos
IsChild
DdeDisconnect
SetWindowsHookExA
LoadAcceleratorsW
UpdateWindow
DdeFreeDataHandle
MapVirtualKeyA
TranslateAcceleratorA
GetSystemMenu
SetRectEmpty
SetDlgItemTextA
GetClassLongW
UnhookWindowsHookEx
GetAsyncKeyState
LoadImageA
CheckMenuItem
GetForegroundWindow
gdi32
ExcludeClipRect
IntersectClipRect
OffsetRgn
Chord
StartPage
GetTextExtentPoint32W
GetOutlineTextMetricsA
PtVisible
CloseEnhMetaFile
ArcTo
GetTextFaceW
GetTextExtentPoint32A
SetBitmapDimensionEx
SetROP2
RectVisible
LineTo
CreateMetaFileA
GetEnhMetaFileA
OffsetWindowOrgEx
SetTextJustification
CombineRgn
EnumFontFamiliesExA
CreatePolygonRgn
GetCharWidth32W
SetColorAdjustment
SetTextCharacterExtra
CreateHatchBrush
GetTextColor
GetNearestPaletteIndex
Polygon
PlayMetaFile
GetWindowOrgEx
RectInRegion
PolylineTo
FrameRgn
EndPage
Escape
CreateFontA
PtInRegion
ScaleWindowExtEx
CreateFontIndirectA
InvertRgn
SetWindowExtEx
GetTextCharacterExtra
ExtFloodFill
SetTextColor
AbortPath
GetObjectA
CreateFontIndirectW
GetBkMode
EnumObjects
GetClipRgn
GetClipBox
CreateRectRgn
SetAbortProc
GetBrushOrgEx
GetColorAdjustment
ExtCreatePen
GetRgnBox
GetPixel
GetCurrentPositionEx
StartDocA
StretchDIBits
CreatePalette
SetPolyFillMode
Arc
CreateBrushIndirect
CreateCompatibleBitmap
CreateDIBitmap
SetViewportOrgEx
PlayEnhMetaFile
AbortDoc
GetStockObject
DeleteObject
CreateEnhMetaFileA
SetMapperFlags
PolyBezierTo
FloodFill
ExtTextOutA
SelectObject
FillRgn
CreatePolyPolygonRgn
GetWindowExtEx
SelectPalette
GetObjectType
OffsetViewportOrgEx
ExtTextOutW
SetBoundsRect
PlayMetaFileRecord
PathToRegion
GetAspectRatioFilterEx
GetRegionData
SaveDC
SetBitmapBits
GetDIBits
StrokePath
ExtCreateRegion
GetTextExtentExPointA
CloseMetaFile
EndPath
CreatePen
GdiComment
CreateRoundRectRgn
SetMapMode
RoundRect
PatBlt
ExtSelectClipRgn
RealizePalette
GetObjectW
GetDCOrgEx
SetDIBits
Rectangle
AnimatePalette
ResetDCA
SetGraphicsMode
CloseFigure
CreateDIBSection
SelectClipRgn
GetBitmapDimensionEx
SetTextAlign
GetTextMetricsW
CreateCompatibleDC
TextOutA
SetMiterLimit
CreateBitmapIndirect
LPtoDP
GetCharABCWidthsFloatA
TranslateCharsetInfo
CreatePatternBrush
GetTextFaceA
GetCharWidthW
DeleteDC
GetArcDirection
GetCharABCWidthsA
CreateDCA
SetStretchBltMode
GetBkColor
GetMiterLimit
SetPaletteEntries
SetWindowOrgEx
Polyline
GetFontData
EndDoc
SetPixelV
GetCharWidthA
CreateDIBPatternBrushPt
OffsetClipRgn
AngleArc
GetDeviceCaps
GetPaletteEntries
StretchBlt
MoveToEx
SetRectRgn
CreateEllipticRgnIndirect
ScaleViewportExtEx
DrawEscape
CopyMetaFileA
GetViewportExtEx
CreateRectRgnIndirect
EnumFontFamiliesA
Pie
EnumMetaFile
Ellipse
WidenPath
SetViewportExtEx
CreateEllipticRgn
EqualRgn
GetTextExtentPointA
GetCharWidthFloatA
BeginPath
GetTextAlign
CreateBitmap
CreateDiscardableBitmap
PlgBlt
GetViewportOrgEx
MaskBlt
ResizePalette
TextOutW
CreateSolidBrush
PolyPolygon
RestoreDC
GetCharWidth32A
GetTextMetricsA
GetKerningPairsA
SetBrushOrgEx
BitBlt
PolyDraw
SetBkMode
SetBkColor
PolyBezier
GetMapMode
GetBitmapBits
GetSystemPaletteEntries
SetPixel
PaintRgn
SetArcDirection
CreateICA
kernel32
FlushConsoleInputBuffer
CopyFileA
GetTickCount
GetOEMCP
ConvertDefaultLocale
SetEvent
GetDateFormatA
GetSystemTime
TlsFree
LoadResource
GetStringTypeW
ResumeThread
TlsSetValue
GetFileAttributesA
InterlockedIncrement
lstrcpyA
GetCurrentProcessId
GetExitCodeProcess
GetFullPathNameA
CreateEventA
MulDiv
VirtualQuery
WriteFile
GetDateFormatW
GetDiskFreeSpaceExA
FileTimeToSystemTime
HeapReAlloc
GlobalUnlock
GetEnvironmentStrings
FindFirstFileA
IsValidLocale
LeaveCriticalSection
MultiByteToWideChar
GetCurrentThreadId
FindNextFileW
lstrcpynA
GetTimeFormatW
CreateMutexA
GetLocalTime
GetFileType
GetFileTime
IsDebuggerPresent
lstrcmpA
SuspendThread
GetFileAttributesW
TlsAlloc
SetStdHandle
GlobalHandle
MoveFileA
OpenMutexA
GetLocaleInfoA
DeleteCriticalSection
InterlockedExchange
RtlUnwind
GetTimeZoneInformation
GetProcessTimes
VirtualFree
GlobalAlloc
GetProcessHeap
SetErrorMode
GetVolumeInformationA
DeleteFileA
GlobalMemoryStatus
IsBadWritePtr
GetFullPathNameW
CreateFileMappingA
CreateProcessA
SizeofResource
GlobalFindAtomA
UnhandledExceptionFilter
GetTimeFormatA
SetHandleCount
VirtualAlloc
GetLogicalDriveStringsW
WaitForSingleObject
FreeEnvironmentStringsW
ReleaseSemaphore
GetTempPathA
GetDriveTypeA
lstrlenW
FindNextFileA
GetUserDefaultLangID
ReadFile
GetFileSize
CreateDirectoryA
LCMapStringA
IsBadReadPtr
GetFileAttributesExA
GetCommandLineA
GetNumberFormatW
EnumSystemLocalesA
FlushFileBuffers
GlobalFlags
HeapAlloc
VirtualProtect
HeapCreate
GetTempFileNameW
InitializeCriticalSection
SystemTimeToFileTime
GetCurrentProcess
GetSystemTimeAsFileTime
WritePrivateProfileStringA
GetPrivateProfileIntA
ExitThread
ResetEvent
InterlockedCompareExchange
FormatMessageA
WideCharToMultiByte
GetCurrentThread
LoadLibraryA
GetShortPathNameA
RaiseException
CreateDirectoryW
LocalAlloc
EnterCriticalSection
GetStdHandle
LocalFileTimeToFileTime
DuplicateHandle
FreeEnvironmentStringsA
GetModuleHandleA
GlobalAddAtomA
FreeLibrary
DebugBreak
LocalFree
GetStartupInfoW
OutputDebugStringW
GlobalFree
UnlockFile
InterlockedDecrement
SetFilePointer
GetComputerNameA
ExpandEnvironmentStringsW
CompareStringA
PulseEvent
GetModuleHandleW
CreateMutexW
GetLogicalDrives
GetModuleFileNameW
GetTempFileNameA
UnmapViewOfFile
GetVersion
GetUserDefaultLCID
GetCPInfo
CreateFileA
_llseek
Process32Next
WriteConsoleW
FatalAppExitA
GetEnvironmentVariableA
FindFirstFileW
CompareStringW
LockFile
GetDiskFreeSpaceA
GetCurrentDirectoryA
QueryPerformanceCounter
GetModuleFileNameA
GetCommandLineW
IsValidCodePage
SetCurrentDirectoryA
GlobalDeleteAtom
GetWindowsDirectoryA
lstrcmpW
WinExec
lstrcatA
GetStartupInfoA
CloseHandle
GetVersionExA
GetProcAddress
SetThreadPriority
FormatMessageW
TerminateProcess
ExitProcess
CreateThread
GetStringTypeA
FindResourceA
HeapSize
GetLocaleInfoW
FreeResource
GetVersionExW
MapViewOfFile
GetLastError
SetLastError
FindClose
TlsGetValue
CreateFileW
HeapDestroy
HeapFree
GetEnvironmentStringsW
FileTimeToLocalFileTime
GlobalLock
CreateEventW
OpenFileMappingA
lstrlenA
LockResource
GetThreadLocale
SetUnhandledExceptionFilter
SetEnvironmentVariableA
SetEndOfFile
lstrcmpiW
SetFileAttributesA
GetACP
DeviceIoControl
LCMapStringW
advapi32
RegDeleteValueW
QueryServiceConfigA
RegQueryValueExA
RegEnumKeyExW
FreeSid
RegOpenKeyExA
RegEnumValueW
CryptEncrypt
RegCreateKeyExW
RegSetValueExW
GetLengthSid
AdjustTokenPrivileges
RegSetValueExA
CryptGetHashParam
DuplicateToken
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyW
RegOpenKeyA
InitializeSecurityDescriptor
GetTokenInformation
OpenSCManagerA
IsValidSecurityDescriptor
CreateServiceW
SetFileSecurityA
OpenProcessToken
RegSetValueA
OpenThreadToken
ReportEventW
GetSecurityDescriptorControl
GetUserNameA
SetEntriesInAclW
RegQueryInfoKeyA
RegEnumValueA
AccessCheck
RegDeleteValueA
RegCreateKeyExA
RegEnumKeyA
RegCloseKey
OpenServiceA
RegDeleteKeyW
QueryServiceStatus
AddAce
RegQueryValueExW
RegOpenKeyExW
CryptDestroyKey
DeleteService
RegQueryValueA
CryptAcquireContextA
CloseServiceHandle
LookupPrivilegeValueA
AllocateAndInitializeSid
DeregisterEventSource
GetSidSubAuthorityCount
RegCreateKeyA
RegOpenCurrentUser
StartServiceA
CryptReleaseContext
CryptDestroyHash
RegQueryValueW
ControlService
ChangeServiceConfigA
shell32
SHChangeNotify
SHGetPathFromIDListW
SHFileOperationW
ExtractIconA
SHGetMalloc
ShellExecuteExW
SHGetPathFromIDListA
ord155
SHGetSpecialFolderLocation
SHGetSpecialFolderPathA
SHBrowseForFolderA
DragQueryFileA
DragAcceptFiles
Shell_NotifyIconW
SHBrowseForFolderW
SHGetSpecialFolderPathW
DragQueryFileW
ShellExecuteExA
ShellExecuteW
comctl32
ImageList_SetBkColor
ImageList_DragLeave
_TrackMouseEvent
ImageList_GetImageCount
ImageList_ReplaceIcon
DestroyPropertySheetPage
ImageList_LoadImageA
ImageList_Replace
ImageList_GetBkColor
ImageList_Destroy
ImageList_Read
ImageList_Merge
PropertySheetA
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_GetIcon
ImageList_DragEnter
ImageList_AddMasked
ImageList_EndDrag
ImageList_Add
ImageList_DragShowNolock
ImageList_Write
CreateStatusWindowW
ImageList_Draw
CreatePropertySheetPageA
ImageList_SetOverlayImage
ImageList_DragMove
ord17
ImageList_BeginDrag
ImageList_Create
ImageList_GetImageInfo
ImageList_SetDragCursorImage
InitCommonControlsEx
Sections
.text Size: 60KB - Virtual size: 57KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 104KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 32KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ