General
-
Target
853ec7f8f16cd1659cccd642b2658df9_JaffaCakes118
-
Size
87KB
-
Sample
240530-3atyxadg5t
-
MD5
853ec7f8f16cd1659cccd642b2658df9
-
SHA1
648524114052240e803ef6a539a81d15fb2f4705
-
SHA256
08a5282eb8388ac556bf25d4e9979cab766a37339b283ec2ea9d423802a6bc2b
-
SHA512
70f265a79e0ea5f52d6159f1ef71d5f6f3cd7d8ae3a811c804fa1d18ab55a31a5cf92f487c19bca5bf71869d7a87fcadf6621ea932363e37b74c8330f5d7940d
-
SSDEEP
1536:9Tdm9B9lYypfMXxugHQ0DbLiNuMJGPgrAbMkqq/:94lLpkXcED3iNuMMP7Q
Static task
static1
Behavioral task
behavioral1
Sample
853ec7f8f16cd1659cccd642b2658df9_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
853ec7f8f16cd1659cccd642b2658df9_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240419-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/nsisdl.dll
Resource
win7-20240220-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/nsisdl.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
853ec7f8f16cd1659cccd642b2658df9_JaffaCakes118
-
Size
87KB
-
MD5
853ec7f8f16cd1659cccd642b2658df9
-
SHA1
648524114052240e803ef6a539a81d15fb2f4705
-
SHA256
08a5282eb8388ac556bf25d4e9979cab766a37339b283ec2ea9d423802a6bc2b
-
SHA512
70f265a79e0ea5f52d6159f1ef71d5f6f3cd7d8ae3a811c804fa1d18ab55a31a5cf92f487c19bca5bf71869d7a87fcadf6621ea932363e37b74c8330f5d7940d
-
SSDEEP
1536:9Tdm9B9lYypfMXxugHQ0DbLiNuMJGPgrAbMkqq/:94lLpkXcED3iNuMMP7Q
Score7/10-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
0ff2d70cfdc8095ea99ca2dabbec3cd7
-
SHA1
10c51496d37cecd0e8a503a5a9bb2329d9b38116
-
SHA256
982c5fb7ada7d8c9bc3e419d1c35da6f05bc5dd845940c179af3a33d00a36a8b
-
SHA512
cb5fc0b3194f469b833c2c9abf493fcec5251e8609881b7f5e095b9bd09ed468168e95dda0ba415a7d8d6b7f0dee735467c0ed8e52b223eb5359986891ba6e2e
-
SSDEEP
192:eK24sihno00Wfl97nH6T2enXwWobpWBTU4VtHT7dmN35OlASl:u8QIl975eXqlWBrz7YLOlA
Score3/10 -
-
-
Target
$PLUGINSDIR/nsisdl.dll
-
Size
15KB
-
MD5
365e712eafd3fbfedcd9cd711526c977
-
SHA1
e5984443d51c95daa8ad3a7ea8c16e4f8b3e3466
-
SHA256
939e81ad5c29211790e5a1a8f6bea7b258bf37b55224631feb71dd31bb0ef852
-
SHA512
848f2fba59a2c19ee8d98d2ec7f8bc5132014601bb641179eea6d52695290d7ef21908bfd03482e065eb797dcb0f9f87591a9696c1ab399c739cd0348f2a67de
-
SSDEEP
384:Whyd8Y6pu8ZaLf6Uksnw1g8BUcyHisURb:Whyd8Y67WGg8B/Eih
Score3/10 -