d:\PCDemoBuildArea\Blowout-Code\Setup\ReleaseRetail\Setup.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
29a67f02717c80833a4de50cd063b89d_JaffaCakes118.exe
Resource
win7-20240729-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
29a67f02717c80833a4de50cd063b89d_JaffaCakes118.exe
Resource
win10v2004-20241007-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
29a67f02717c80833a4de50cd063b89d_JaffaCakes118
-
Size
1.1MB
-
MD5
29a67f02717c80833a4de50cd063b89d
-
SHA1
3fc7a1410108b4459feb6624b43613502e656332
-
SHA256
b5d62996009649646bc66bc814a7a0725c0871340b4f152a35d82b80f69272b4
-
SHA512
96a690736d1587a40464ad446868f3e7872d0eeb11c576e47d09c71e58632c7e7338982006ee7b95c5f93ff9a83b195615cf5f20175b43f3c1dffc6d3c9c60ba
-
SSDEEP
12288:KtZEH458BL+ImlQ9d6cGdhPK2No92o+Psc4r55sh/2Rdzok:scBL+Zlad6cGdhPpOYPscI55sx2Rf
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 29a67f02717c80833a4de50cd063b89d_JaffaCakes118
Files
-
29a67f02717c80833a4de50cd063b89d_JaffaCakes118.exe windows:4 windows x86 arch:x86
a27845e460e7885ec054ba53a42417ea
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
winmm
timeGetTime
timeBeginPeriod
timeEndPeriod
comctl32
ord17
comdlg32
ChooseColorA
wsock32
closesocket
WSAAsyncGetHostByName
WSAStartup
WSAGetLastError
recv
send
select
connect
inet_ntoa
socket
ogg
ogg_stream_clear
ogg_page_eos
ogg_stream_pageout
ogg_stream_flush
ogg_stream_packetin
ogg_stream_init
ogg_sync_clear
ogg_stream_packetout
ogg_stream_pagein
ogg_page_serialno
ogg_sync_pageout
ogg_sync_wrote
ogg_sync_buffer
ogg_sync_init
vorbis
vorbis_bitrate_flushpacket
vorbis_bitrate_addblock
vorbis_analysis
vorbis_analysis_blockout
vorbis_analysis_buffer
vorbis_analysis_wrote
vorbis_analysis_headerout
vorbis_comment_init
vorbis_block_init
vorbis_block_clear
vorbis_encode_init_vbr
vorbis_info_init
vorbis_synthesis_read
vorbis_synthesis_pcmout
vorbis_synthesis_blockin
vorbis_synthesis
vorbis_synthesis_init
vorbis_synthesis_headerin
vorbis_dsp_clear
vorbis_comment_clear
vorbis_analysis_init
vorbis_info_clear
vorbisfile
ov_open
ov_read
ov_time_seek
ov_clear
kernel32
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStartupInfoA
GetModuleHandleA
GetModuleHandleW
MulDiv
FindResourceA
MultiByteToWideChar
FreeLibrary
GetDiskFreeSpaceA
GetDiskFreeSpaceW
GetProcAddress
LoadLibraryA
LoadLibraryW
GetSystemInfo
VirtualAlloc
VirtualFree
GetLastError
GetFileSize
CreateFileA
CreateFileW
SetFilePointer
CloseHandle
SetFileAttributesA
SetFileAttributesW
WriteFile
DeleteFileA
DeleteFileW
GetFileAttributesA
GetFileAttributesW
MoveFileA
MoveFileW
SetCurrentDirectoryA
SetCurrentDirectoryW
GetFileTime
SetFileTime
ReadFile
CopyFileA
CopyFileW
GetExitCodeProcess
WaitForMultipleObjects
CreateProcessW
DuplicateHandle
GetCurrentProcess
CreatePipe
CreateDirectoryA
CreateDirectoryW
GetCurrentDirectoryA
GetCurrentDirectoryW
RemoveDirectoryA
RemoveDirectoryW
FindClose
FindNextFileA
FindFirstFileA
FindNextFileW
FindFirstFileW
GetUserDefaultLangID
Sleep
CreateMutexA
CreateMutexW
GetCommandLineW
GetTempPathW
GetTempPathA
GetWindowsDirectoryW
GetSystemDirectoryW
GetWindowsDirectoryA
GetSystemDirectoryA
GetLocaleInfoA
GetLocaleInfoW
GetSystemDefaultLangID
GetVersionExW
GetVersionExA
ExitProcess
FormatMessageW
FormatMessageA
GlobalAlloc
WideCharToMultiByte
DebugBreak
LoadLibraryExW
GetLocalTime
GetTickCount
CreateProcessA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
GetModuleFileNameA
GetComputerNameW
GetComputerNameA
ExitThread
GlobalMemoryStatus
CreateThread
GetProcessWorkingSetSize
SetConsoleCtrlHandler
LockResource
LoadResource
user32
CreatePopupMenu
CreateWindowExW
CreateWindowExA
IsZoomed
RegisterWindowMessageA
GetSysColorBrush
ClipCursor
GetSubMenu
TrackPopupMenu
DestroyMenu
GetClassInfoExW
GetClassInfoExA
ClientToScreen
RegisterClassExW
RegisterClassExA
LoadMenuW
LoadMenuA
GetMenuItemCount
GetMenuItemInfoA
SetMenuItemInfoA
GetMenuItemInfoW
SetMenuItemInfoW
EndDialog
SetForegroundWindow
WindowFromPoint
InsertMenuItemA
ReleaseCapture
CallWindowProcW
CallWindowProcA
GetSystemMetrics
DefMDIChildProcW
DefMDIChildProcA
DefWindowProcW
DefWindowProcA
IsIconic
EndDeferWindowPos
BeginDeferWindowPos
AdjustWindowRect
GetUpdateRect
GetDlgItem
DrawTextExW
DrawTextExA
GetKeyState
BringWindowToTop
GetDC
ReleaseDC
MessageBeep
SetWindowLongA
IsWindow
CreateDialogIndirectParamA
GetWindowTextA
EnumChildWindows
CreateDialogParamW
CreateDialogParamA
DialogBoxParamW
DialogBoxParamA
SetCapture
GetWindow
GetDlgCtrlID
GetSysColor
DrawFocusRect
GetIconInfo
DrawIcon
DrawTextW
DrawTextA
MoveWindow
ScreenToClient
GetWindowLongW
GetWindowLongA
LoadCursorW
SetCursor
LoadCursorA
GetCursorPos
GetWindowRect
GetCapture
KillTimer
GetClassLongW
GetClassLongA
SetClassLongA
BeginPaint
EndPaint
GetClientRect
SetWindowPos
DestroyWindow
PostMessageW
PostMessageA
GetParent
DrawEdge
IsWindowEnabled
FillRect
GetClipboardData
GetActiveWindow
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
PostQuitMessage
ExitWindowsEx
MessageBoxA
SetFocus
SetTimer
PeekMessageA
DispatchMessageA
DrawFrameControl
InvalidateRect
LoadIconW
LoadIconA
RegisterWindowMessageW
SetWindowLongW
UpdateWindow
PeekMessageW
TranslateMessage
DispatchMessageW
ShowWindow
SendMessageW
SendMessageA
MessageBoxW
SetClassLongW
gdi32
GetTextExtentPoint32W
StretchBlt
CreateCompatibleBitmap
PatBlt
CreateFontW
GetDeviceCaps
CreateDIBitmap
ExtTextOutA
SetTextColor
SetBkColor
CreateSolidBrush
Rectangle
CreateCompatibleDC
SelectObject
GetObjectA
BitBlt
CreatePen
MoveToEx
LineTo
DeleteDC
GetStockObject
SetBkMode
TextOutW
GetTextExtentPoint32A
DeleteObject
advapi32
GetUserNameA
GetUserNameW
RegOpenKeyExW
RegQueryInfoKeyA
RegDeleteKeyW
RegOpenKeyExA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyA
OpenProcessToken
LookupPrivilegeValueW
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyW
RegOpenKeyA
RegCreateKeyW
RegCreateKeyA
RegSetValueExW
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegQueryValueExW
RegQueryInfoKeyW
shell32
Shell_NotifyIconA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteW
ShellExecuteA
ole32
CoCreateInstance
CoCreateGuid
CoInitialize
msvcp70
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
msvcr70
atan
asin
acos
_wcsnicmp
wcsncmp
wcstoul
atof
_itow
_wtoi
_wcslwr
_wcsupr
wcscpy
_wcsicmp
wcscmp
wcscat
wcschr
wcsstr
wcslen
_vsnprintf
_vsnwprintf
wcsncpy
atan2
ceil
floor
srand
_isnan
fopen
fwrite
fclose
_wstat64
_wctime64
_utime
_stat
_CxxThrowException
iswalpha
pow
towlower
towupper
_purecall
_iob
fprintf
rand
__CxxFrameHandler
cos
exp
fmod
log
qsort
_strdate
_wstrdate
_wstrtime
memmove
sin
sqrt
tan
_strtime
mktime
gmtime
time
sprintf
iswdigit
iswalnum
iswspace
difftime
_wstat
_wfopen
_controlfp
??1exception@@UAE@XZ
??0exception@@QAE@XZ
??0exception@@QAE@ABV0@@Z
strncpy
strncat
ftell
_fdopen
_errno
malloc
fread
free
vsprintf
fflush
fseek
rewind
fputc
calloc
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__dllonexit
_onexit
_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__security_error_handler
_except_handler3
_stricmp
Exports
Exports
GPackage
intUCommandletexecMain
intUObjectexecAbs
intUObjectexecAcos
intUObjectexecAddAdd_Byte
intUObjectexecAddAdd_Int
intUObjectexecAddAdd_PreByte
intUObjectexecAddAdd_PreInt
intUObjectexecAddEqual_ByteByte
intUObjectexecAddEqual_FloatFloat
intUObjectexecAddEqual_IntInt
intUObjectexecAddEqual_RotatorRotator
intUObjectexecAddEqual_VectorVector
intUObjectexecAdd_FloatFloat
intUObjectexecAdd_IntInt
intUObjectexecAdd_RotatorRotator
intUObjectexecAdd_VectorVector
intUObjectexecAllObjects
intUObjectexecAndAnd_BoolBool
intUObjectexecAnd_IntInt
intUObjectexecApprox2DLength
intUObjectexecApprox2DSafeNormal
intUObjectexecArrayElement
intUObjectexecAsc
intUObjectexecAsin
intUObjectexecAssert
intUObjectexecAt_StringString
intUObjectexecAtan
intUObjectexecBoolToByte
intUObjectexecBoolToFloat
intUObjectexecBoolToInt
intUObjectexecBoolToString
intUObjectexecBoolVariable
intUObjectexecByteConst
intUObjectexecByteToBool
intUObjectexecByteToFloat
intUObjectexecByteToInt
intUObjectexecByteToString
intUObjectexecCaps
intUObjectexecCase
intUObjectexecCeil
intUObjectexecChr
intUObjectexecCircularAddToDesired
intUObjectexecCircularInterpToDesired
intUObjectexecClamp
intUObjectexecClassContext
intUObjectexecClassIsChildOf
intUObjectexecClockwiseFrom_IntInt
intUObjectexecComplementEqual_FloatFloat
intUObjectexecComplementEqual_StringString
intUObjectexecComplement_PreInt
intUObjectexecConcat_StringString
intUObjectexecContext
intUObjectexecCos
intUObjectexecCross_VectorVector
intUObjectexecDebugInfo
intUObjectexecDefaultVariable
intUObjectexecDelegateFunction
intUObjectexecDelegateProperty
intUObjectexecDisable
intUObjectexecDivideEqual_ByteByte
intUObjectexecDivideEqual_FloatFloat
intUObjectexecDivideEqual_IntFloat
intUObjectexecDivideEqual_RotatorFloat
intUObjectexecDivideEqual_VectorFloat
intUObjectexecDivide_FloatFloat
intUObjectexecDivide_IntInt
intUObjectexecDivide_RotatorFloat
intUObjectexecDivide_VectorFloat
intUObjectexecDot_VectorVector
intUObjectexecDynArrayElement
intUObjectexecDynArrayInsert
intUObjectexecDynArrayLength
intUObjectexecDynArrayRemove
intUObjectexecDynamicCast
intUObjectexecDynamicLoadObject
intUObjectexecEatString
intUObjectexecEnable
intUObjectexecEndFunctionParms
intUObjectexecEqualEqual_BoolBool
intUObjectexecEqualEqual_FloatFloat
intUObjectexecEqualEqual_IntInt
intUObjectexecEqualEqual_NameName
intUObjectexecEqualEqual_ObjectObject
intUObjectexecEqualEqual_RotatorRotator
intUObjectexecEqualEqual_StringString
intUObjectexecEqualEqual_VectorVector
intUObjectexecExp
intUObjectexecFClamp
intUObjectexecFMax
intUObjectexecFMin
intUObjectexecFRand
intUObjectexecFakePIDResponse
intUObjectexecFalse
intUObjectexecFinalFunction
intUObjectexecFindObject
intUObjectexecFloatConst
intUObjectexecFloatToBool
intUObjectexecFloatToByte
intUObjectexecFloatToInt
intUObjectexecFloatToString
intUObjectexecGetAxes
intUObjectexecGetCaller
intUObjectexecGetEnum
intUObjectexecGetPropertyText
intUObjectexecGetStateName
intUObjectexecGetUnAxes
intUObjectexecGlobalFunction
intUObjectexecGotoLabel
intUObjectexecGotoState
intUObjectexecGreaterEqual_FloatFloat
intUObjectexecGreaterEqual_IntInt
intUObjectexecGreaterEqual_StringString
intUObjectexecGreaterGreaterGreater_IntInt
intUObjectexecGreaterGreater_IntInt
intUObjectexecGreaterGreater_VectorRotator
intUObjectexecGreater_FloatFloat
intUObjectexecGreater_IntInt
intUObjectexecGreater_StringString
intUObjectexecHighNative0
intUObjectexecHighNative1
intUObjectexecHighNative10
intUObjectexecHighNative11
intUObjectexecHighNative12
intUObjectexecHighNative13
intUObjectexecHighNative14
intUObjectexecHighNative15
intUObjectexecHighNative2
intUObjectexecHighNative3
intUObjectexecHighNative4
intUObjectexecHighNative5
intUObjectexecHighNative6
intUObjectexecHighNative7
intUObjectexecHighNative8
intUObjectexecHighNative9
intUObjectexecInStr
intUObjectexecInstanceVariable
intUObjectexecIntConst
intUObjectexecIntConstByte
intUObjectexecIntOne
intUObjectexecIntToBool
intUObjectexecIntToByte
intUObjectexecIntToFloat
intUObjectexecIntToString
intUObjectexecIntZero
intUObjectexecInterpCurveEval
intUObjectexecInterpCurveGetInputDomain
intUObjectexecInterpCurveGetOutputRange
intUObjectexecInvert
intUObjectexecIsA
intUObjectexecIsDebugging
intUObjectexecIsInState
intUObjectexecIsMiniEd
intUObjectexecIsOnConsole
intUObjectexecIsShipping
intUObjectexecIsSoaking
intUObjectexecIsUTracing
intUObjectexecIterator
intUObjectexecJump
intUObjectexecJumpIfNot
intUObjectexecLeft
intUObjectexecLen
intUObjectexecLerp
intUObjectexecLessEqual_FloatFloat
intUObjectexecLessEqual_IntInt
intUObjectexecLessEqual_StringString
intUObjectexecLessLess_IntInt
intUObjectexecLessLess_VectorRotator
intUObjectexecLess_FloatFloat
intUObjectexecLess_IntInt
intUObjectexecLess_StringString
intUObjectexecLet
intUObjectexecLetBool
intUObjectexecLetDelegate
intUObjectexecLoadPackage
intUObjectexecLocalVariable
intUObjectexecLocalize
intUObjectexecLog
intUObjectexecLoge
intUObjectexecMax
intUObjectexecMetaCast
intUObjectexecMid
intUObjectexecMin
intUObjectexecMirrorVectorByNormal
intUObjectexecMultiplyEqual_ByteByte
intUObjectexecMultiplyEqual_FloatFloat
intUObjectexecMultiplyEqual_IntFloat
intUObjectexecMultiplyEqual_RotatorFloat
intUObjectexecMultiplyEqual_VectorFloat
intUObjectexecMultiplyEqual_VectorVector
intUObjectexecMultiplyMultiply_FloatFloat
intUObjectexecMultiply_FloatFloat
intUObjectexecMultiply_FloatRotator
intUObjectexecMultiply_FloatVector
intUObjectexecMultiply_IntInt
intUObjectexecMultiply_RotatorFloat
intUObjectexecMultiply_VectorFloat
intUObjectexecMultiply_VectorVector
intUObjectexecNameConst
intUObjectexecNameToBool
intUObjectexecNameToString
intUObjectexecNativeParm
intUObjectexecNew
intUObjectexecNoObject
intUObjectexecNormal
intUObjectexecNormalize
intUObjectexecNotEqual_BoolBool
intUObjectexecNotEqual_FloatFloat
intUObjectexecNotEqual_IntInt
intUObjectexecNotEqual_NameName
intUObjectexecNotEqual_ObjectObject
intUObjectexecNotEqual_RotatorRotator
intUObjectexecNotEqual_StringString
intUObjectexecNotEqual_VectorVector
intUObjectexecNot_PreBool
intUObjectexecNothing
intUObjectexecObjectConst
intUObjectexecObjectToBool
intUObjectexecObjectToString
intUObjectexecOrOr_BoolBool
intUObjectexecOr_IntInt
intUObjectexecOrthoRotation
intUObjectexecPercent_FloatFloat
intUObjectexecPreLoad
intUObjectexecPrimitiveCast
intUObjectexecQuatFindBetween
intUObjectexecQuatFromAxisAndAngle
intUObjectexecQuatInvert
intUObjectexecQuatProduct
intUObjectexecQuatRotateVector
intUObjectexecRand
intUObjectexecResetConfig
intUObjectexecRight
intUObjectexecRotRand
intUObjectexecRotationConst
intUObjectexecRotatorToBool
intUObjectexecRotatorToString
intUObjectexecRotatorToVector
intUObjectexecRound
intUObjectexecSaveConfig
intUObjectexecSeeSaw
intUObjectexecSelf
intUObjectexecSetPropertyText
intUObjectexecSetUTracing
intUObjectexecSin
intUObjectexecSmallestAngle
intUObjectexecSmerp
intUObjectexecSqrt
intUObjectexecSquare
intUObjectexecStaticSaveConfig
intUObjectexecStop
intUObjectexecStopWatch
intUObjectexecStringConst
intUObjectexecStringToBool
intUObjectexecStringToByte
intUObjectexecStringToFloat
intUObjectexecStringToInt
intUObjectexecStringToRotator
intUObjectexecStringToVector
intUObjectexecStructCmpEq
intUObjectexecStructCmpNe
intUObjectexecStructMember
intUObjectexecSubtractEqual_ByteByte
intUObjectexecSubtractEqual_FloatFloat
intUObjectexecSubtractEqual_IntInt
intUObjectexecSubtractEqual_RotatorRotator
intUObjectexecSubtractEqual_VectorVector
intUObjectexecSubtractSubtract_Byte
intUObjectexecSubtractSubtract_Int
intUObjectexecSubtractSubtract_PreByte
intUObjectexecSubtractSubtract_PreInt
intUObjectexecSubtract_FloatFloat
intUObjectexecSubtract_IntInt
intUObjectexecSubtract_PreFloat
intUObjectexecSubtract_PreInt
intUObjectexecSubtract_PreVector
intUObjectexecSubtract_RotatorRotator
intUObjectexecSubtract_VectorVector
intUObjectexecSwitch
intUObjectexecTan
intUObjectexecTrue
intUObjectexecUnicodeStringConst
intUObjectexecVRand
intUObjectexecVSize
intUObjectexecVectorConst
intUObjectexecVectorToBool
intUObjectexecVectorToRotator
intUObjectexecVectorToString
intUObjectexecVirtualFunction
intUObjectexecWarn
intUObjectexecXorXor_BoolBool
intUObjectexecXor_IntInt
Sections
.text Size: 656KB - Virtual size: 653KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 156KB - Virtual size: 155KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 160KB - Virtual size: 1001KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 44KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 64KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ