Overview
overview
7Static
static
3aa09f23a48...18.exe
windows7-x64
7aa09f23a48...18.exe
windows10-2004-x64
7$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3Uninstall.exe
windows7-x64
7Uninstall.exe
windows10-2004-x64
7$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3mosquitto.dll
windows7-x64
1mosquitto.dll
windows10-2004-x64
1mosquitto.exe
windows7-x64
1mosquitto.exe
windows10-2004-x64
1mosquitto_passwd.exe
windows7-x64
1mosquitto_passwd.exe
windows10-2004-x64
1mosquitto_pub.exe
windows7-x64
1mosquitto_pub.exe
windows10-2004-x64
1mosquitto_sub.exe
windows7-x64
1mosquitto_sub.exe
windows10-2004-x64
1mosquittopp.dll
windows7-x64
1mosquittopp.dll
windows10-2004-x64
1General
-
Target
aa09f23a486603056a2574648c17cd17_JaffaCakes118
-
Size
354KB
-
Sample
240819-hsydtszfkc
-
MD5
aa09f23a486603056a2574648c17cd17
-
SHA1
c12babacdbb79205e4c613bc8ab32e21fcc9c31c
-
SHA256
8bfb7135402915778f3c6c3ee8d60abd9817e92a10cf51224a0950030d681a60
-
SHA512
19628ef02b2d7a1736e8e05da60da99de20d86764ad7723c827fdfc0d7cf882366efd15b6e2b89282e9719ff21061f6693f7c818423dd0562e1ee1e9a9c46232
-
SSDEEP
6144:2DOl8PDJSbNjhpPj6qBLc/ayvCPbl5WppFMiA5dAEjq/cabRWh2L5yhvGuuST1gC:IC8FCfAT6Pbl2EaqWUh2LchvGZi1tHf
Static task
static1
Behavioral task
behavioral1
Sample
aa09f23a486603056a2574648c17cd17_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
aa09f23a486603056a2574648c17cd17_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240705-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
Uninstall.exe
Resource
win7-20240704-en
Behavioral task
behavioral8
Sample
Uninstall.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240708-en
Behavioral task
behavioral10
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240705-en
Behavioral task
behavioral12
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
mosquitto.dll
Resource
win7-20240704-en
Behavioral task
behavioral14
Sample
mosquitto.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral15
Sample
mosquitto.exe
Resource
win7-20240704-en
Behavioral task
behavioral16
Sample
mosquitto.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral17
Sample
mosquitto_passwd.exe
Resource
win7-20240708-en
Behavioral task
behavioral18
Sample
mosquitto_passwd.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral19
Sample
mosquitto_pub.exe
Resource
win7-20240708-en
Behavioral task
behavioral20
Sample
mosquitto_pub.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral21
Sample
mosquitto_sub.exe
Resource
win7-20240708-en
Behavioral task
behavioral22
Sample
mosquitto_sub.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral23
Sample
mosquittopp.dll
Resource
win7-20240704-en
Behavioral task
behavioral24
Sample
mosquittopp.dll
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
aa09f23a486603056a2574648c17cd17_JaffaCakes118
-
Size
354KB
-
MD5
aa09f23a486603056a2574648c17cd17
-
SHA1
c12babacdbb79205e4c613bc8ab32e21fcc9c31c
-
SHA256
8bfb7135402915778f3c6c3ee8d60abd9817e92a10cf51224a0950030d681a60
-
SHA512
19628ef02b2d7a1736e8e05da60da99de20d86764ad7723c827fdfc0d7cf882366efd15b6e2b89282e9719ff21061f6693f7c818423dd0562e1ee1e9a9c46232
-
SSDEEP
6144:2DOl8PDJSbNjhpPj6qBLc/ayvCPbl5WppFMiA5dAEjq/cabRWh2L5yhvGuuST1gC:IC8FCfAT6Pbl2EaqWUh2LchvGZi1tHf
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
b0c77267f13b2f87c084fd86ef51ccfc
-
SHA1
f7543f9e9b4f04386dfbf33c38cbed1bf205afb3
-
SHA256
a0cac4cf4852895619bc7743ebeb89f9e4927ccdb9e66b1bcd92a4136d0f9c77
-
SHA512
f2b57a2eea00f52a3c7080f4b5f2bb85a7a9b9f16d12da8f8ff673824556c62a0f742b72be0fd82a2612a4b6dbd7e0fdc27065212da703c2f7e28d199696f66e
-
SSDEEP
192:4PtkiQJr7jHYT87RfwXQ6YSYtOuVDi7IsFW14Ll8CO:H78TQIgGCDp14LGC
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
eac1c3707970fe7c71b2d760c34763fa
-
SHA1
f275e659ad7798994361f6ccb1481050aba30ff8
-
SHA256
062c75ad650548750564ffd7aef8cd553773b5c26cae7f25a5749b13165194e3
-
SHA512
3415bd555cf47407c0ae62be0dbcba7173d2b33a371bf083ce908fc901811adb888b7787d11eb9d99a1a739cbd9d1c66e565db6cd678bdadaf753fbda14ffd09
-
SSDEEP
96:oXHqZ4zC5RH3cXX1LlYlRowycxM2DjDf3GEst+Nt+jvDYx4AqndYHnxss:oXHq+CP3uKrpyREs06YxcdGn
Score3/10 -
-
-
Target
Uninstall.exe
-
Size
67KB
-
MD5
f1e980251115111807ec26229c699d3c
-
SHA1
bf706215b6a63109deb343363584780516fb91f8
-
SHA256
23547e9c1c73ee31654f2fffaee16eb3a8153130a8568675060305fbb228ce31
-
SHA512
494e0bdacc26ced583ef9ee5731b9e78da4bb28b4f1b513eb7cffceb4d6070b6fcce18667187137f11ef81babb7be68b8e83196c06da1d93609983e7937e1e4b
-
SSDEEP
1536:eHYMiClDhdyA5x5Z0Dvyec2gdLeAyN0J/+bWMo:2YjClDhQlDvrc2ceAd/+bDo
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
b0c77267f13b2f87c084fd86ef51ccfc
-
SHA1
f7543f9e9b4f04386dfbf33c38cbed1bf205afb3
-
SHA256
a0cac4cf4852895619bc7743ebeb89f9e4927ccdb9e66b1bcd92a4136d0f9c77
-
SHA512
f2b57a2eea00f52a3c7080f4b5f2bb85a7a9b9f16d12da8f8ff673824556c62a0f742b72be0fd82a2612a4b6dbd7e0fdc27065212da703c2f7e28d199696f66e
-
SSDEEP
192:4PtkiQJr7jHYT87RfwXQ6YSYtOuVDi7IsFW14Ll8CO:H78TQIgGCDp14LGC
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
eac1c3707970fe7c71b2d760c34763fa
-
SHA1
f275e659ad7798994361f6ccb1481050aba30ff8
-
SHA256
062c75ad650548750564ffd7aef8cd553773b5c26cae7f25a5749b13165194e3
-
SHA512
3415bd555cf47407c0ae62be0dbcba7173d2b33a371bf083ce908fc901811adb888b7787d11eb9d99a1a739cbd9d1c66e565db6cd678bdadaf753fbda14ffd09
-
SSDEEP
96:oXHqZ4zC5RH3cXX1LlYlRowycxM2DjDf3GEst+Nt+jvDYx4AqndYHnxss:oXHq+CP3uKrpyREs06YxcdGn
Score3/10 -
-
-
Target
mosquitto.dll
-
Size
52KB
-
MD5
7f7ef445640879991b912baee95de026
-
SHA1
845fe318a65503827bcd742d8c7130d87017c9e1
-
SHA256
caa96f36724ebade8f92c10de3860ee27776a6d51c7fdc8d13fd94172c53469a
-
SHA512
e88c6ce70b0682ba7f8af23e433f464fe8d1bb252885043f0ace3fa0c008c1c2a5cd564c700d92215c0bbfda748d5ce5942bb83daf990d48f9d6b0cc817d2234
-
SSDEEP
1536:1aQDeORQe3/laVsdwbXHFwJoJOLk/4V/e:1nZp/gVewbXFw6JOLoD
Score1/10 -
-
-
Target
mosquitto.exe
-
Size
251KB
-
MD5
0fcdfaf2485d60f35d2128470e70d688
-
SHA1
7b017b8f0ea1159453f3d40731afb07d73eeadce
-
SHA256
2a370503a73e4cff5fed706c918878edd14d563df9a70441da7442f212077727
-
SHA512
193cba6136b1bfab44d7a48458a012b24a2e820f6f0de067b4a4bdb265d0585256ede11e5b1c1d3c0deb6339e7b0217fe511c3d45a26301789b6da63d54050e4
-
SSDEEP
3072:ogHFNBI5PVyfjzKd9kcnkPP0VXzuh0zWp5TCgw9hJoo8xe+ySY9DrTW7wkn1f+FX:ogTgkcnklh0SpAgsDnW7pn1G/eDD
Score1/10 -
-
-
Target
mosquitto_passwd.exe
-
Size
20KB
-
MD5
10b48a05ff87fddbb8950585d93f16ed
-
SHA1
44ac8d22f1d33faa93d3a04f1410feff7442280e
-
SHA256
299552558f6f172b8d6bda9028c22bee57fd5198fba3b5a5a8fa30ef7c67c94c
-
SHA512
e7fcca0b70f1cf387a3a6a4dda51e8c72487402f935f3bf819b703d18744318b441a283ad7e6ad20cf533795fdf5f3c7bf62df3fcc89b8070d243cd24449ceeb
-
SSDEEP
384:OsLX+C9iJfsitGgEw+wTh0pYqwAum2R/XYsvi:OsLXT0X5E9BSqwZR/os
Score1/10 -
-
-
Target
mosquitto_pub.exe
-
Size
38KB
-
MD5
8009eb296a21b70a5830e67afeb116fd
-
SHA1
09d8bc5cd0493510d05f5de0100ebdc1a312c685
-
SHA256
6c4449805ce25461b44bfe36b7bdf03a0784d69590408d3fa168efad655e3f45
-
SHA512
0af2202a6ba9b2675d3c42b76d0dcfd5986ae54380a92b12215af08b8c732fb5d90057f51208878771044134021ca4f69775898ac50cc626883afeac5382b820
-
SSDEEP
768:/WygvCU4NvG9nd1cNnf/SYj/4A7DoBD00r69rgoprz390:/WHCU4Ne9nba6YcI2g0rATrp0
Score1/10 -
-
-
Target
mosquitto_sub.exe
-
Size
40KB
-
MD5
efbaf2885cdeefc1c159dbcf233d7d75
-
SHA1
7567c9d12b20a0432d790486ba66005866d79586
-
SHA256
4a0d587e0f89123c036ba9804f40645757fc7f95fb4dde60e7e73cc4d0eb5e0b
-
SHA512
038a4f7be79ed68c2892b4d496bc7909fecc965cc55fb9fb3e5b9cca8507ba0cb8fe86cf847179eea557f5c81573b723e7a4a900206870c62da12a8af65d7e7d
-
SSDEEP
768:c1e2jrmabPFZUFAFuxuOiOe47Y7+gFLS0r69rpiH39:c1PLTFvuxuOJV7F2G0rApi
Score1/10 -
-
-
Target
mosquittopp.dll
-
Size
17KB
-
MD5
564331044a21c1724402085a7d891347
-
SHA1
627b77ae5e968551d0c142ea7ec461e6dd504e73
-
SHA256
4a0ceee4e27632382624864b34255618c331f63f0c690f3e15df0a14d5a35478
-
SHA512
689ba5e0f9a738015b5d1bd8dd5d72fcbb22cb7ea34b31258c8eee848a537b3c47d99e81c58c1a9cc6a926f21a70360d6c1015fcf2bf8cbf6d7ef3a08fe57917
-
SSDEEP
192:QqBJoXNEiidjwtAYScw8klHTmdNMqc/gqVF9kqwI5uVsYnl0M/2:l7o9EVdySc6ydNMqc/gcJuye0M
Score1/10 -