Overview
overview
7Static
static
3846c1db109...18.exe
windows7-x64
7846c1db109...18.exe
windows10-2004-x64
7$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3$PLUGINSDI...ss.dll
windows7-x64
3$PLUGINSDI...ss.dll
windows10-2004-x64
3Module/CSN_HTTP.dll
windows7-x64
1Module/CSN_HTTP.dll
windows10-2004-x64
1Module/Lib...sh.dll
windows7-x64
1Module/Lib...sh.dll
windows10-2004-x64
3Module/OTP...ch.dll
windows7-x64
1Module/OTP...ch.dll
windows10-2004-x64
1OTPWidget.exe
windows7-x64
1OTPWidget.exe
windows10-2004-x64
3OTP_AU.exe
windows7-x64
1OTP_AU.exe
windows10-2004-x64
1uninst.exe
windows7-x64
7uninst.exe
windows10-2004-x64
7General
-
Target
846c1db10939a9981031427b3683ca9e_JaffaCakes118
-
Size
1.2MB
-
Sample
240530-rhaz8acc94
-
MD5
846c1db10939a9981031427b3683ca9e
-
SHA1
7543022244277b050a6988d551c192e830aff053
-
SHA256
906f0b1ec60e48f26079a188f7ce4b175c2ede2922f7c39a8b0f5b9bc70aaaab
-
SHA512
00c64a949daf09e5ee30e8234d01bd162b7d5c5fb816dabb0805cb9719c072823e183ab206209b5fd97b315dd40664a77d5f28c416c3cb72479b897d9aa1dec2
-
SSDEEP
24576:aTVMyx3KzRVYnSTKO1oFCHdHLsHkDlBlFxWViUzIF6YF0v:HI3y6SOZ6xy4DW0Uz6hF0v
Static task
static1
Behavioral task
behavioral1
Sample
846c1db10939a9981031427b3683ca9e_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
846c1db10939a9981031427b3683ca9e_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240508-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/nsProcess.dll
Resource
win7-20231129-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/nsProcess.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral7
Sample
Module/CSN_HTTP.dll
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
Module/CSN_HTTP.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral9
Sample
Module/LibBlowFish.dll
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
Module/LibBlowFish.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
Module/OTPMacSearch.dll
Resource
win7-20240508-en
Behavioral task
behavioral12
Sample
Module/OTPMacSearch.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
OTPWidget.exe
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
OTPWidget.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
OTP_AU.exe
Resource
win7-20240221-en
Behavioral task
behavioral16
Sample
OTP_AU.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral17
Sample
uninst.exe
Resource
win7-20231129-en
Behavioral task
behavioral18
Sample
uninst.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
846c1db10939a9981031427b3683ca9e_JaffaCakes118
-
Size
1.2MB
-
MD5
846c1db10939a9981031427b3683ca9e
-
SHA1
7543022244277b050a6988d551c192e830aff053
-
SHA256
906f0b1ec60e48f26079a188f7ce4b175c2ede2922f7c39a8b0f5b9bc70aaaab
-
SHA512
00c64a949daf09e5ee30e8234d01bd162b7d5c5fb816dabb0805cb9719c072823e183ab206209b5fd97b315dd40664a77d5f28c416c3cb72479b897d9aa1dec2
-
SSDEEP
24576:aTVMyx3KzRVYnSTKO1oFCHdHLsHkDlBlFxWViUzIF6YF0v:HI3y6SOZ6xy4DW0Uz6hF0v
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/InstallOptions.dll
-
Size
14KB
-
MD5
325b008aec81e5aaa57096f05d4212b5
-
SHA1
27a2d89747a20305b6518438eff5b9f57f7df5c3
-
SHA256
c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b
-
SHA512
18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf
-
SSDEEP
192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo
Score3/10 -
-
-
Target
$PLUGINSDIR/nsProcess.dll
-
Size
4KB
-
MD5
05450face243b3a7472407b999b03a72
-
SHA1
ffd88af2e338ae606c444390f7eaaf5f4aef2cd9
-
SHA256
95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89
-
SHA512
f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b
Score3/10 -
-
-
Target
Module/CSN_HTTP.dll
-
Size
254KB
-
MD5
45fc366232ba9cbe05e9a6efb77af652
-
SHA1
88b3c017bad1262429b351d6b1916ed24673c687
-
SHA256
d8b6c8b6d476fc9c055444cf3d2c28f197a11e93e8885e33be2fb8b2de31c398
-
SHA512
0536b567ed1fb5f7b57789f18f984138191ce2dd34b7207ddc7468adbea11216285a085ae4847df28757a150ff61c424bb1a2a79393e34814513f673f9799b6a
-
SSDEEP
6144:LicjjGdQDr/uM4aBndRGus8Y87AgqZApU:+cjQFM4aBdW8J0gqw
Score1/10 -
-
-
Target
Module/LibBlowFish.dll
-
Size
70KB
-
MD5
2c0930372dcedd71263cf58cb8be28b0
-
SHA1
00adf1e5408727ce9d26bdb6ce703ef71986ba7b
-
SHA256
1c9c52ec9f253e4ec10508382cb8c9f41fd459fdee2ba0dc35d0734c8e5866e4
-
SHA512
0a3ac8e26da06c70e1e6ffdcd8c96da21ca7790de75359fc29a409f3bfca77867794626bdf2e195308fecc8c6f9d2911ff9f77e400ecbcbefc53b984582afe7e
-
SSDEEP
768:I443DA6OdeGFqRJt9BireY6c0kAPZQ7Zk7n/SgLa1x6rUt9e5QXsAbI:h43DA6IxqJi5YPEk7nLauN5QcA
Score3/10 -
-
-
Target
Module/OTPMacSearch.dll
-
Size
205KB
-
MD5
f2cc648123c83d3247df9948493df440
-
SHA1
344ec96e115fd62dfca4626babf40fde4ba19311
-
SHA256
85385f4c7a348676703ab7367c701932572c64fc20da46335b0bc6a069ee21f1
-
SHA512
feacc42ed8937b48495b4eda9b5dd6e2e3805cc7e57eeb3ac1db02b18eb8d6c74724269c6f0810cc7cbdc2506f2f372031fc4ba55ad607edf21133b54124ab3d
-
SSDEEP
3072:KBKUvPitoilaF9nBZuOQP1p6yrteXuut9SF0eWRPfpRT5x8zr0R19:cPijaF9njuOQL6TuutI0t9H8f
Score1/10 -
-
-
Target
OTPWidget.exe
-
Size
1.7MB
-
MD5
63b03eea92746000b6131888cf7ee6af
-
SHA1
0ee7d2178dddc1ffecb081e42c86f2a0a14b5062
-
SHA256
acad8d1c63865f6b3c6aae4afb3b1975f6c36f9a70e76a0fc5d622b03a382fd2
-
SHA512
ee3b498ca57996c33661598e6500aa75fe45a01ebca68096b7b8f76565e7f9ff16c3097e13718dc4e8620e34dbb38f86a6bc2b60b8d929a7046f75e7f4df55eb
-
SSDEEP
49152:F3nJ54ZFhNaWkqaOvzpSPc/M+eR4uqOYcvThNXdNTa:BJ54BcWNaOvzpSKMtR4uqqvTrXdN
Score3/10 -
-
-
Target
OTP_AU.exe
-
Size
11KB
-
MD5
5b12e5507401c34194ab18c5f0e2d588
-
SHA1
8c73af35514e552150b3e5de66e10b680a181d12
-
SHA256
a59ebab0463a5abc1226d7067b0a3521430069c7c1451da98af0342aa0874061
-
SHA512
110514b275c4de47b0f23ba85a553e6e509cb8d85f41a5f325094dedd6e5db07fdd4d3f07040ee996cf8afcc68bbc432cf3ec8e3e15081bbc7daddc2b849c677
-
SSDEEP
192:WRcMkHa1lr7fdZz1+IerqH1/py4+osK4nXvWJJ9Eq/ka:OcMkHa1lfEIerqH1/mWh
Score1/10 -
-
-
Target
uninst.exe
-
Size
48KB
-
MD5
4c18b8d8b614d6d5bef9c697d6240137
-
SHA1
d8e9eb1a0dde1940bf2fe3f925de90271df028ed
-
SHA256
68935eee9d5805e3a0737066a9e18214cb25caa3e516b10d6abed74780f2771e
-
SHA512
e504a8926aa5ee9f3d72f53cc1dd458ec53e1c8e23338116bf193aa4bb9ac4862cf0ff2d9c6c6ef162731c0b73bb60ac7f4511d1b09092338b224cfb66af3e63
-
SSDEEP
1536:cpgpHzb9dZVX9fHMvG0D3XJMgdLeAyNTM:qgXdZt9P6D3XJMceAt
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-