Overview
overview
7Static
static
3a1cd9514cb...18.exe
windows7-x64
7a1cd9514cb...18.exe
windows10-2004-x64
7$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3$PLUGINSDI...nu.dll
windows7-x64
3$PLUGINSDI...nu.dll
windows10-2004-x64
3$PLUGINSDI...fo.dll
windows7-x64
3$PLUGINSDI...fo.dll
windows10-2004-x64
3QtCore4.dll
windows7-x64
3QtCore4.dll
windows10-2004-x64
3QtGui4.dll
windows7-x64
1QtGui4.dll
windows10-2004-x64
1QtOpenGL4.dll
windows7-x64
3QtOpenGL4.dll
windows10-2004-x64
3SDL2.dll
windows7-x64
1SDL2.dll
windows10-2004-x64
1Uninstall.exe
windows7-x64
7Uninstall.exe
windows10-2004-x64
7$PLUGINSDI...fo.dll
windows7-x64
3$PLUGINSDI...fo.dll
windows10-2004-x64
3libgcc_s_dw2-1.dll
windows7-x64
3libgcc_s_dw2-1.dll
windows10-2004-x64
3mingwm10.dll
windows7-x64
1mingwm10.dll
windows10-2004-x64
1yabause.exe
windows7-x64
1yabause.exe
windows10-2004-x64
1General
-
Target
a1cd9514cba770a9489c4b5bf3e3e0d6_JaffaCakes118
-
Size
6.4MB
-
Sample
240612-xc8beszalr
-
MD5
a1cd9514cba770a9489c4b5bf3e3e0d6
-
SHA1
bbf2e8ba6535d593c7bdcf607bfb602d93bd588e
-
SHA256
2269609fad20ad39769a62edd57631aa24c5142de017738b865a42a39b980c16
-
SHA512
2e2f0bcfc4aa95240b93b93538030deb418b4b5bfeba2f896a093d785a62a413ee26d55083e2bb6d5b596b272db8204f86aa325706ed19e3fd095552afee9a27
-
SSDEEP
98304:nKdH9ALQ/KZ/Iodde43PSZBw/apPwZf78kkU/nQIaL1ZW4/WcHXtn4ggz:Kddbr8OBxp4f7Vx/nyj/B6gK
Static task
static1
Behavioral task
behavioral1
Sample
a1cd9514cba770a9489c4b5bf3e3e0d6_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
a1cd9514cba770a9489c4b5bf3e3e0d6_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240220-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/StartMenu.dll
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/StartMenu.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/UserInfo.dll
Resource
win7-20240611-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/UserInfo.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral9
Sample
QtCore4.dll
Resource
win7-20240611-en
Behavioral task
behavioral10
Sample
QtCore4.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
QtGui4.dll
Resource
win7-20240611-en
Behavioral task
behavioral12
Sample
QtGui4.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
QtOpenGL4.dll
Resource
win7-20231129-en
Behavioral task
behavioral14
Sample
QtOpenGL4.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral15
Sample
SDL2.dll
Resource
win7-20240508-en
Behavioral task
behavioral16
Sample
SDL2.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral17
Sample
Uninstall.exe
Resource
win7-20240508-en
Behavioral task
behavioral18
Sample
Uninstall.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral19
Sample
$PLUGINSDIR/UserInfo.dll
Resource
win7-20240508-en
Behavioral task
behavioral20
Sample
$PLUGINSDIR/UserInfo.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral21
Sample
libgcc_s_dw2-1.dll
Resource
win7-20240220-en
Behavioral task
behavioral22
Sample
libgcc_s_dw2-1.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral23
Sample
mingwm10.dll
Resource
win7-20240611-en
Behavioral task
behavioral24
Sample
mingwm10.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral25
Sample
yabause.exe
Resource
win7-20240220-en
Behavioral task
behavioral26
Sample
yabause.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
a1cd9514cba770a9489c4b5bf3e3e0d6_JaffaCakes118
-
Size
6.4MB
-
MD5
a1cd9514cba770a9489c4b5bf3e3e0d6
-
SHA1
bbf2e8ba6535d593c7bdcf607bfb602d93bd588e
-
SHA256
2269609fad20ad39769a62edd57631aa24c5142de017738b865a42a39b980c16
-
SHA512
2e2f0bcfc4aa95240b93b93538030deb418b4b5bfeba2f896a093d785a62a413ee26d55083e2bb6d5b596b272db8204f86aa325706ed19e3fd095552afee9a27
-
SSDEEP
98304:nKdH9ALQ/KZ/Iodde43PSZBw/apPwZf78kkU/nQIaL1ZW4/WcHXtn4ggz:Kddbr8OBxp4f7Vx/nyj/B6gK
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/InstallOptions.dll
-
Size
14KB
-
MD5
325b008aec81e5aaa57096f05d4212b5
-
SHA1
27a2d89747a20305b6518438eff5b9f57f7df5c3
-
SHA256
c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b
-
SHA512
18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf
-
SSDEEP
192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo
Score3/10 -
-
-
Target
$PLUGINSDIR/StartMenu.dll
-
Size
7KB
-
MD5
a4173b381625f9f12aadb4e1cdaefdb8
-
SHA1
cf1680c2bc970d5675adbf5e89292a97e6724713
-
SHA256
7755ff2707ca19344d489a5acec02d9e310425fa6e100d2f13025761676b875b
-
SHA512
fcac79d42862da6bdd3ecad9d887a975cdff2301a8322f321be58f754a26b27077b452faa4751bbd09cd3371b4afce65255fbbb443e2c93dd2cba0ba652f4a82
-
SSDEEP
96:2fiqP7bO2qHkAC40KhvSE+6nrxtMn0iGd88qRLqtJ1tbRhElfRx2:siqP7OHX1Q4xtcf8qo/ttgfRx2
Score3/10 -
-
-
Target
$PLUGINSDIR/UserInfo.dll
-
Size
4KB
-
MD5
7579ade7ae1747a31960a228ce02e666
-
SHA1
8ec8571a296737e819dcf86353a43fcf8ec63351
-
SHA256
564c80dec62d76c53497c40094db360ff8a36e0dc1bda8383d0f9583138997f5
-
SHA512
a88bc56e938374c333b0e33cb72951635b5d5a98b9cb2d6785073cbcad23bf4c0f9f69d3b7e87b46c76eb03ced9bb786844ce87656a9e3df4ca24acf43d7a05b
Score3/10 -
-
-
Target
QtCore4.dll
-
Size
2.7MB
-
MD5
dd15718a57a405911718c9e223476060
-
SHA1
6ace71ed5db21b58056287c32feaa3309e3d4bd4
-
SHA256
8eff2d90a8a0eaadffd01982ab43f6cc68d7e1a41d90738c93d21ce1ad2f63f9
-
SHA512
2947f5ec79ca5ef08ac6d26159aa2d03382ef42f5c1af793c3831ca0e0ce3a451905bad4a3c9bf0e0893de093cc9b626d3ab789d018543ba1a3e549de19a380d
-
SSDEEP
49152:Vxbwz+A9MHaJVHOsbbWOWXzzULQoAnqagHWL1hp0UnxFJsv6tWKFdu9ChTTLyvLW:Pbwz+n6JVHNbb1WDnvgHWL1hp0UnxFJ/
Score3/10 -
-
-
Target
QtGui4.dll
-
Size
9.7MB
-
MD5
d3c70c355594167db4ebc96fe7eaf36c
-
SHA1
e9963160dbfe440975b7392db35f7495e211b334
-
SHA256
28e03fc044e291969fc8232a76526272a3254c5b417c70d3eb4c9a3ded14b23e
-
SHA512
de531371240fcc6520c4d6a182f94b95c7a123cd8cf4b2d8af8a717fc2c057f7955c7828505b114dbd77ecb99418dae52a3e1d1c7e49a2e118d2455d46200744
-
SSDEEP
196608:YSrdG+y/1Tt7walxx+GETp4tGQk99IqEhsgGFw6JEuw2U85SMZ8tMIrlG7VM7Etc:nSncmg9mhsVV6EttuLMNgN5PNj/
Score1/10 -
-
-
Target
QtOpenGL4.dll
-
Size
966KB
-
MD5
11cce987f3d0d8fd343e571902fe07ea
-
SHA1
7121af8415497370d6d5fe7181db06d9bfe5c234
-
SHA256
d4a4e7b2a26a28d00beda1b837c60f70ba51d4c623c9517d8d8b5caed4a4ad28
-
SHA512
dfe19fa3fd8583890bf159f67008a1abca27af86ccf2a568278606fb85ff0fb1a9ba122de7634b2ab592040f1c0dc9d8de659928fad035c2a65e251eedf850e6
-
SSDEEP
12288:Kpdu4GEbjfdSAA4KwbRSfqJhAK1TXmq3z9tgnP+uO:Kpdu4G8SAxKwNgiTXmEgBO
Score3/10 -
-
-
Target
SDL2.dll
-
Size
983KB
-
MD5
ae58662a16410481b477b78b8d47460b
-
SHA1
fb8b1ba166913c18eb00f8ca53439d0f4ee54359
-
SHA256
a23d944bea101c574875c13883088798cfda712de969dd14f529e870a0de87da
-
SHA512
93280d9ab366b3dfae6e40e50984764fab7be6ca6bd2b5a24d1182d67f06f9cc50203cc3d01a4232593c0c1ad03dfae56e119286d10b78d2e3d57b394bda8778
-
SSDEEP
24576:hEbJuxlv9Sawf3oEYsTXR7fxiGmUDZ/HJkAVJcJdKll6/QTjFZLFGPQRGnx54IC5:zlv9SlEJ8C/KjFnMMvvS4
Score1/10 -
-
-
Target
Uninstall.exe
-
Size
95KB
-
MD5
8ddd5a4eb175825d8dc05d4a0de09b56
-
SHA1
6e26dd4b4c9d4cbc6d28246b37d9cc43f371f861
-
SHA256
fe95ae98dad9d110df3d08d06a5411e3de32ce4f0d0f135f5dabd391a2d49371
-
SHA512
17726fc620fa0e16e65375aac91c622c4e0b9c43f783c9410b6723ed4edb5ffa6d12f74d03fcef7cb3fe1989a543ef43d3e45b0c67dee19801dd82f701659efe
-
SSDEEP
1536:iQpQ5EP0ijnRTXJKgdLeAyN/PbbUAwSy/JWP3oYqgX5TNSli6UKeJ70/UD:iQIURTXJKceAJhUrqgX5wi4etgm
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/UserInfo.dll
-
Size
4KB
-
MD5
7579ade7ae1747a31960a228ce02e666
-
SHA1
8ec8571a296737e819dcf86353a43fcf8ec63351
-
SHA256
564c80dec62d76c53497c40094db360ff8a36e0dc1bda8383d0f9583138997f5
-
SHA512
a88bc56e938374c333b0e33cb72951635b5d5a98b9cb2d6785073cbcad23bf4c0f9f69d3b7e87b46c76eb03ced9bb786844ce87656a9e3df4ca24acf43d7a05b
Score3/10 -
-
-
Target
libgcc_s_dw2-1.dll
-
Size
42KB
-
MD5
c4b4409f186da70fcf2bcc60d5f05489
-
SHA1
056663c9fd2851cd64f39d882f6758e7a987bd42
-
SHA256
b35f2a8f4c8f1833f3cdec20739c58e295758ce22021d03d4335043148bd7610
-
SHA512
cdcb945a82a0304e4d7cfc9ae9d7e5a5e81d4e3025e982494c87c283f6fac542181e9e1e3028456b9b0b5b6279990cb3e1a50f9df0f6e707c70fa0e23c7a808c
-
SSDEEP
768:sZ1l+WCdhTcpKn+CwZoyf/dadEU9mRWtyTN:41l+WGhIKn+CQ7EyW0TN
Score3/10 -
-
-
Target
mingwm10.dll
-
Size
11KB
-
MD5
dbda60d92e774b4acb3b1cd71f909426
-
SHA1
66bfe06a16025f574323a0ce64dcc7c8216eb56c
-
SHA256
56a59dae638d9bb45ce729a5d6fdfb0ecbe88b37047e4d6d20dbdef1fc90bd72
-
SHA512
993a1f4af21cd5e13c3b8059cf483b10a58beb0d1777703ea07e9dcb5e7f681fa774e770abe9b6b4ca66b348997da0218d0ff67f18fcca1b3ca1ece2551d965a
-
SSDEEP
96:ahfuHOIHxyOPLrHU4D+wdzpHvqsKZKnKTBKVhKRHK2FoSK8KcfK5uKxGKlJKHItQ:iuHOIE8rHI6RJyLTR24GEv
Score1/10 -
-
-
Target
yabause.exe
-
Size
6.5MB
-
MD5
f521756bdfa5f2f3661e9cc38d4aa806
-
SHA1
1e1cdd96cc8d192e7348259334fcf4151d20f1af
-
SHA256
7b337ac1e602a1c020079ec41d203220a6734bfc41a728aabed3b1749b851506
-
SHA512
456250457e6be17e7ed1af889bca6f19aaf80ec504477d3187e2ec403a86fc7dc6c81611f073704f99dc7cfc3789501723fdd0dc56c1fe5513f0503ed0d66cd6
-
SSDEEP
98304:ajk7MifsE2CP0bi3vWZR13QeaL0CSCXOJc+c+QnGZR:aQ7MifsE2CgHZBaL0dc+chq
Score1/10 -