Overview
overview
7Static
static
391d41147ba...18.exe
windows7-x64
791d41147ba...18.exe
windows10-2004-x64
7$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3$PLUGINSDI...nu.dll
windows7-x64
3$PLUGINSDI...nu.dll
windows10-2004-x64
3dids.exe
windows7-x64
1dids.exe
windows10-2004-x64
1lib/bin/awt.dll
windows7-x64
1lib/bin/awt.dll
windows10-2004-x64
1lib/bin/axbridge.dll
windows7-x64
1lib/bin/axbridge.dll
windows10-2004-x64
1lib/bin/cl...vm.dll
windows7-x64
1lib/bin/cl...vm.dll
windows10-2004-x64
1lib/bin/cmm.dll
windows7-x64
1lib/bin/cmm.dll
windows10-2004-x64
1lib/bin/dcpr.dll
windows7-x64
3lib/bin/dcpr.dll
windows10-2004-x64
3lib/bin/deploy.dll
windows7-x64
3lib/bin/deploy.dll
windows10-2004-x64
3lib/bin/de...a1.dll
windows7-x64
1lib/bin/de...a1.dll
windows10-2004-x64
1lib/bin/dt_shmem.dll
windows7-x64
3lib/bin/dt_shmem.dll
windows10-2004-x64
3lib/bin/dt_socket.dll
windows7-x64
1lib/bin/dt_socket.dll
windows10-2004-x64
1lib/bin/fo...er.dll
windows7-x64
1lib/bin/fo...er.dll
windows10-2004-x64
1lib/bin/hpi.dll
windows7-x64
1lib/bin/hpi.dll
windows10-2004-x64
3General
-
Target
91d41147ba3347eccd58d19dbe562b39_JaffaCakes118
-
Size
13.2MB
-
Sample
240603-pypr7sgc32
-
MD5
91d41147ba3347eccd58d19dbe562b39
-
SHA1
6c69ec5cfb8ff635b351507cf2689b0769c2ab2c
-
SHA256
c3292a1a8b5708160e8d863844eb20ee0aad7ea0d827cb7bec429c70416f35cf
-
SHA512
95d4cc843e3ac133335da868d884a49405051a66021e594575ec3cb87be915e159e5f9ef10df55b5ba48533ad2f00d341318dfc126d368f259a6cc0299e7d6c8
-
SSDEEP
393216:XtSgQPJt6GghfeoDbVEUcvmxVhiG0Ng5YsVKuB:tQj4GoDJEUppi/NpYPB
Static task
static1
Behavioral task
behavioral1
Sample
91d41147ba3347eccd58d19dbe562b39_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
91d41147ba3347eccd58d19dbe562b39_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/nsisStartMenu.dll
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/nsisStartMenu.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral9
Sample
dids.exe
Resource
win7-20240419-en
Behavioral task
behavioral10
Sample
dids.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
lib/bin/awt.dll
Resource
win7-20240220-en
Behavioral task
behavioral12
Sample
lib/bin/awt.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
lib/bin/axbridge.dll
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
lib/bin/axbridge.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
lib/bin/client/jvm.dll
Resource
win7-20240221-en
Behavioral task
behavioral16
Sample
lib/bin/client/jvm.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral17
Sample
lib/bin/cmm.dll
Resource
win7-20240221-en
Behavioral task
behavioral18
Sample
lib/bin/cmm.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral19
Sample
lib/bin/dcpr.dll
Resource
win7-20240220-en
Behavioral task
behavioral20
Sample
lib/bin/dcpr.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral21
Sample
lib/bin/deploy.dll
Resource
win7-20231129-en
Behavioral task
behavioral22
Sample
lib/bin/deploy.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral23
Sample
lib/bin/deployJava1.dll
Resource
win7-20240215-en
Behavioral task
behavioral24
Sample
lib/bin/deployJava1.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
lib/bin/dt_shmem.dll
Resource
win7-20240221-en
Behavioral task
behavioral26
Sample
lib/bin/dt_shmem.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral27
Sample
lib/bin/dt_socket.dll
Resource
win7-20240221-en
Behavioral task
behavioral28
Sample
lib/bin/dt_socket.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral29
Sample
lib/bin/fontmanager.dll
Resource
win7-20240508-en
Behavioral task
behavioral30
Sample
lib/bin/fontmanager.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral31
Sample
lib/bin/hpi.dll
Resource
win7-20240221-en
Behavioral task
behavioral32
Sample
lib/bin/hpi.dll
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
91d41147ba3347eccd58d19dbe562b39_JaffaCakes118
-
Size
13.2MB
-
MD5
91d41147ba3347eccd58d19dbe562b39
-
SHA1
6c69ec5cfb8ff635b351507cf2689b0769c2ab2c
-
SHA256
c3292a1a8b5708160e8d863844eb20ee0aad7ea0d827cb7bec429c70416f35cf
-
SHA512
95d4cc843e3ac133335da868d884a49405051a66021e594575ec3cb87be915e159e5f9ef10df55b5ba48533ad2f00d341318dfc126d368f259a6cc0299e7d6c8
-
SSDEEP
393216:XtSgQPJt6GghfeoDbVEUcvmxVhiG0Ng5YsVKuB:tQj4GoDJEUppi/NpYPB
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
c17103ae9072a06da581dec998343fc1
-
SHA1
b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
-
SHA256
dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
-
SHA512
d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
-
SSDEEP
192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
c10e04dd4ad4277d5adc951bb331c777
-
SHA1
b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
-
SHA256
e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
-
SHA512
853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
-
SSDEEP
96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score3/10 -
-
-
Target
$PLUGINSDIR/nsisStartMenu.dll
-
Size
5KB
-
MD5
8cc6e3eea71d040f30a3fe34c00b27fe
-
SHA1
94d06eac6b90a0e70a3dc039233bfbf0bd1f08a4
-
SHA256
bce8f1df36b787963bddb6496f44a148ba1a7b56d4c2a02f7e059f2258b1dc0c
-
SHA512
e030918b5660f51b7f77f342bfcb68d5d3749f997e45670558b153ae0cea76c508788edffa555f1a24d6934838db989a8333e76a9869e70a89b0bc2df71c9ce7
-
SSDEEP
96:VvX4nc1PgE30ne9N3ErdfUQhVEZCytwZCPBCkeHUnL7XzZl7C/l7CRR:5Xkc1vEne738mQhKztCCPwfUPzt
Score3/10 -
-
-
Target
dids.exe
-
Size
140KB
-
MD5
a7f667638f0c2fcdb2cd6be8119cf52e
-
SHA1
70406b2108cd2874c2cf7757ac8604eb9e91c473
-
SHA256
b4f8b34082780a88d5ca6dcb6b66ddccece01a2ba198494ce3b1b8bfb508b7d8
-
SHA512
8f8b207fb0f61eada66ac00fa1134a77fe6b53375c3c928937f0ece6f5a9e52abb3553ada7a7060dabb8f94a3651f831b7f6ed694c9a6d04171d19e0bfa1032c
-
SSDEEP
1536:BGtgHEjSO//C78d78wu7hWagwrLiJYe/zVkLwtomzAzpD6szlGQX7icICnOO:0LjSO/9d7v0W3GerPt1zy6stWcI0
Score1/10 -
-
-
Target
lib/bin/awt.dll
-
Size
1.2MB
-
MD5
0fdda4763c75e78f25e415440ea789aa
-
SHA1
efb4fa000e34a253191795638a6ee657ef071215
-
SHA256
6de97887ef757876ddf0549bd041a96bb32a040652a82e221bf7e4c8fcb9b5be
-
SHA512
c21ab179b97f0ea1b27a6cd31651cc8516b921126c44ec44f7fcb240d614d8907168c1c068bf0a4d420141e2c91c636f769e6f1a067b4dcd7d8aef8384bf0a02
-
SSDEEP
24576:+4PUQluG1lXO0QlgXCh3Rg66HaWP2RxKGStUGAPOzW46jtLML:de0QlgXC3g8WPF8POK4kpML
Score1/10 -
-
-
Target
lib/bin/axbridge.dll
-
Size
112KB
-
MD5
5d5af89fa4bde3597598d3d5a71a0bc7
-
SHA1
f08d0b09124300feacf00f4ca9ef667bf0796bb6
-
SHA256
b1a89ea7dfd0594d37cdb84c6f81ba57b5ae8175979a1605474ed3f9e5e8333a
-
SHA512
113a1441a6e7f6e56c892dac9e310675aec275d77269d370beb77cc170a0f426611947495cddee09bc50bb595c70d1f770c6a46db7959196813f96670281158e
-
SSDEEP
3072:v6TgoneEy94+BZ3N2ov1Azjb+cuc7B/h999VhwR:iMLEy3rqjSLc
Score1/10 -
-
-
Target
lib/bin/client/jvm.dll
-
Size
2.5MB
-
MD5
a1ac92c4eb1a4ae2906709a5fb94d822
-
SHA1
83683f12dbfca9b0794afd73a7594a169a5777d4
-
SHA256
b5a3db477b5a66b3b18323d68b231a48576325e8f415131df053366e07d16f86
-
SHA512
f0285fbba7ececec982f52f7aeb06657c8c6a34e6a14a2fea56b06840d29b5c95a4caafcd0ba059bdd4f8a3737148c790bbf24763dd083b154b56c666e263e03
-
SSDEEP
49152:ld9ikGk1xpLMkxjnhp1/ADrd0kMa9pQwXpyCbDFUda44Wru/+6TiLlhIIp7G+ncD:ld9ikRL3nhpaZ0uR7GDcv/G
Score1/10 -
-
-
Target
lib/bin/cmm.dll
-
Size
188KB
-
MD5
09f3599ea16b29d058af4643ca3de114
-
SHA1
8c159ffca46e1ab3f68060694bd51dcfd7b5ca91
-
SHA256
ea68a79686fcfef9f1b0c9c164cca1adee62113d46d7dc7efcb93d73180dfc5b
-
SHA512
1b7f27eaa3030a53735402b11b41e2a76fdd69f09f33184696d2394043fa4319a2615849e77e56e11995dd464be525c2c622f743ca37f37574fa77d4b0b4c0f0
-
SSDEEP
3072:svkU0Rh5hA/qvraiLSNyUuiZtoc4qToCe98cecykbyHeS9h:1U0RhgqDaiL0ToxqToj8rcG79
Score1/10 -
-
-
Target
lib/bin/dcpr.dll
-
Size
140KB
-
MD5
131b4a15d0a41c8346b837c8be017566
-
SHA1
bb16db9ad675585b8fe816e54e6fd9652e0afb62
-
SHA256
d6e172f859953f27dabd0ec0b930f76ab3e2b05caf929859c39281441591dd40
-
SHA512
0b91bd259e300a73bc7accce6276ddc240b8e63fa62be9d40cdd1146b2e009c41926566dabc11044550e6e95276836bb60febb03947cec1449118531bd18e846
-
SSDEEP
3072:H5f+Nlo9WEoITWojGylYCE2Iu2jGLF5A9bE8LUeRBcj3:oS/omTGgYCE2L1F5A9bEGUeRC
Score3/10 -
-
-
Target
lib/bin/deploy.dll
-
Size
76KB
-
MD5
d30b03edb557026f6f06602a9d04d61b
-
SHA1
6d28e9d026442b78e624576bfbb3851951314398
-
SHA256
cb7b92fd94033c26b69289971419f621768e7bc3c0fb57924a311f283b359cd3
-
SHA512
a4543cbd5cb7bd4124908ca194d0054ae9ba1df4baa8e9a2941ec8428f47d466187afe58bb9e5b9cf7d6e60c862ee7ffe8531546b9dc95c8a282dfd18feafcd0
-
SSDEEP
1536:HCEvelsCOXqVMyW5dIahCUM+pFps/XPPsHuSJ1PvCdfxGXNEZl:HfUVMhKao+ls/XsHuoEZl
Score3/10 -
-
-
Target
lib/bin/deployJava1.dll
-
Size
401KB
-
MD5
b8f7c6ca5f8e97249853dbe1dadd1fbc
-
SHA1
c29d893d775cca32fa5cd65806867ad963ab356c
-
SHA256
e4fb1438b24c73de0b455265f80a775bd441fc17a0d9d66104b891e4aa4398fb
-
SHA512
8f56305f7240dcc2f9f73f2edbe67c76dbde3a159cd39f02fbf2a83d118511225afdfe3dfc35701d972984331b4301eab9b467cf791884a1ab6251ee3798e089
-
SSDEEP
6144:zSWaXhK8kiR+iQbejtMm+jYQK6+vU9hT7yy8R0cSjvBD:tA3L+iDjtMmxvU9hT7yy8R0njZD
Score1/10 -
-
-
Target
lib/bin/dt_shmem.dll
-
Size
16KB
-
MD5
bf8e33c1ffe8a5ae8e922fa618312338
-
SHA1
6be8f3af61fa260dbffa5daac7e355e1aaf06ddb
-
SHA256
d6cd693f19af5e4b1d42637cb787cfa03e3118631e11a5137d5193b3cf1db3e5
-
SHA512
4c618f027bc30c0712543502de0ca3339f4ff91a3b01affd849d1ba74307ffd4397d09a13637e13a7ed4f89c925b2b4458acdf0e305b16b8692c30245fb4fbfd
-
SSDEEP
192:1/cfwk/Y2xCLUl2xL1Dl/XL6zJHudRUyGv5clxMaK6c5cioHyVik5GknvOXV3VCp:AsSE6zJOYyGhUtc5noS5dnGXuv0Cp9
Score3/10 -
-
-
Target
lib/bin/dt_socket.dll
-
Size
13KB
-
MD5
4c94557411dfddcb4febd401568a2c5a
-
SHA1
095275cc38afa66caf6dbf92ba84af3c635c123f
-
SHA256
509b6986a494c2440b8bf1f96b8c1976b7a7059a6e22942818d91e17e7ecb040
-
SHA512
0c2082238463c732ceb7618107f0ff82a1ccb0eac7374c1bc97b274ebe1fe50e0c883379583da762ef25d2f25757b39c0b1d449fe445048b1c6a100c7dbb3c27
-
SSDEEP
192:kXiWNRVcsKNXBREiOrqa+0M9gYnb/tSO5n89qQuWr/qSpgItvo9f2bbH:UiWbODXBaxq30xYbJn8LSfkbH
Score1/10 -
-
-
Target
lib/bin/fontmanager.dll
-
Size
332KB
-
MD5
788e5827a2887a87aedbcb59ca9ea9ef
-
SHA1
f60cc7ee621586fa7dd94700b80613f138a805cc
-
SHA256
bcae3e471eb725f583705206d621995a630effe6817a5c2a8e76c78b527c8e2d
-
SHA512
092e595e87f74762f47aec8952672be6e3b8a674712c1e3fb2b454ceb142da7171a35e440c0a04537a60234df51a2aa441448bca33894da986076cf600238d11
-
SSDEEP
6144:hZi3ig9n5WzCgdjLekTqxb3H9JO2IbMM40vl/EUwNF0K5eimn9AZJK:q3iK0FjLe2qxzH9JO2IbuZr0YlJK
Score1/10 -
-
-
Target
lib/bin/hpi.dll
-
Size
15KB
-
MD5
1d748a18416ce95461b79e5ccbeffaa8
-
SHA1
bb1a14ac24ed6001937d428a733fef9f018b456b
-
SHA256
c784a57bad005dcb63f4b5617037791817615042a8d8dc8ebd6c00a103459022
-
SHA512
1d335b6f7f9240d6750560370333b5967c430f05020b3957ee18a0cf1c484d6d654e93dc64b47f727ab1496e2f2b2a5c830955bad1a8e26a4234807aa1bfe113
-
SSDEEP
384:0Siw/hg7q6yuQoB5TqSxpqZyGR9sriWO:1iwgq6xQoBhRtGYm
Score3/10 -