Overview
overview
8Static
static
8c7a10c92e9...18.exe
windows7-x64
7c7a10c92e9...18.exe
windows10-2004-x64
7$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3CORE_RL_bzlib_.dll
windows7-x64
3CORE_RL_bzlib_.dll
windows10-2004-x64
3CORE_RL_glib_.dll
windows7-x64
3CORE_RL_glib_.dll
windows10-2004-x64
3CORE_RL_lcms_.dll
windows7-x64
3CORE_RL_lcms_.dll
windows10-2004-x64
3CORE_RL_lqr_.dll
windows7-x64
3CORE_RL_lqr_.dll
windows10-2004-x64
3CORE_RL_magick_.dll
windows7-x64
3CORE_RL_magick_.dll
windows10-2004-x64
3CORE_RL_ttf_.dll
windows7-x64
3CORE_RL_ttf_.dll
windows10-2004-x64
3CORE_RL_wand_.dll
windows7-x64
3CORE_RL_wand_.dll
windows10-2004-x64
3CORE_RL_zlib_.dll
windows7-x64
3CORE_RL_zlib_.dll
windows10-2004-x64
3glib-2.dll
windows7-x64
3glib-2.dll
windows10-2004-x64
3gmodule-2.dll
windows7-x64
3gmodule-2.dll
windows10-2004-x64
3icudt56.dll
windows7-x64
1icudt56.dll
windows10-2004-x64
1icuin56.dll
windows7-x64
3icuin56.dll
windows10-2004-x64
3icuio56.dll
windows7-x64
3icuio56.dll
windows10-2004-x64
3Analysis
-
max time kernel
120s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system -
submitted
28-08-2024 20:51
Static task
static1
Behavioral task
behavioral1
Sample
c7a10c92e93cb847bac8537977071600_JaffaCakes118.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
c7a10c92e93cb847bac8537977071600_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral4
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral6
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
CORE_RL_bzlib_.dll
Resource
win7-20240729-en
windows7-x64
Behavioral task
behavioral8
Sample
CORE_RL_bzlib_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
CORE_RL_glib_.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral10
Sample
CORE_RL_glib_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
CORE_RL_lcms_.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral12
Sample
CORE_RL_lcms_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
CORE_RL_lqr_.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral14
Sample
CORE_RL_lqr_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
CORE_RL_magick_.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral16
Sample
CORE_RL_magick_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
CORE_RL_ttf_.dll
Resource
win7-20240729-en
windows7-x64
Behavioral task
behavioral18
Sample
CORE_RL_ttf_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
CORE_RL_wand_.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral20
Sample
CORE_RL_wand_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
CORE_RL_zlib_.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral22
Sample
CORE_RL_zlib_.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
glib-2.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral24
Sample
glib-2.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
gmodule-2.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral26
Sample
gmodule-2.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
icudt56.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral28
Sample
icudt56.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
icuin56.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral30
Sample
icuin56.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
icuio56.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral32
Sample
icuio56.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
icudt56.dll
-
Size
23.9MB
-
MD5
67757a4c6c7d33f13fce4caa742d16c2
-
SHA1
ee1b2dc14b7b0465cac896ae1de7c9a566c90ba7
-
SHA256
3ba98aa7fad3af35592b4029442b45f43526d6b3273c75f3857fb28fed6b64f3
-
SHA512
0be3cab49217239aa901aaf44d9158c0650ea2dbaac01e7cc1850971e5e8230ca5baa734cfc1c389aeefb8ed0c7e1836be6e123a3b628702f4ad3151805a29e3
-
SSDEEP
393216:QKAzeR31BwiFvsiXUxew+fWhl1MUl2noOg9Wbkxy0MS/FT437T/0rPO2zj:IG3M
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1676 wrote to memory of 672 1676 rundll32.exe 30 PID 1676 wrote to memory of 672 1676 rundll32.exe 30 PID 1676 wrote to memory of 672 1676 rundll32.exe 30