Overview
overview
5Static
static
5899e13fe14...18.exe
windows7-x64
3899e13fe14...18.exe
windows10-2004-x64
3$PLUGINSDI...er.dll
windows7-x64
3$PLUGINSDI...er.dll
windows10-2004-x64
3$PLUGINSDI...on.dll
windows7-x64
3$PLUGINSDI...on.dll
windows10-2004-x64
3$PLUGINSDI...tp.dll
windows7-x64
3$PLUGINSDI...tp.dll
windows10-2004-x64
3$PLUGINSDI...tn.dll
windows7-x64
3$PLUGINSDI...tn.dll
windows10-2004-x64
3$PLUGINSDI...ss.dll
windows7-x64
3$PLUGINSDI...ss.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...rl.dll
windows7-x64
3$PLUGINSDI...rl.dll
windows10-2004-x64
3$PLUGINSDI...ss.dll
windows7-x64
3$PLUGINSDI...ss.dll
windows10-2004-x64
3$PLUGINSDIR/inetc.dll
windows7-x64
3$PLUGINSDIR/inetc.dll
windows10-2004-x64
3$PLUGINSDI...ol.htm
windows7-x64
3$PLUGINSDI...ol.htm
windows10-2004-x64
3$PLUGINSDI...oll.js
windows7-x64
3$PLUGINSDI...oll.js
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3$PLUGINSDI...ec.dll
windows7-x64
3$PLUGINSDI...ec.dll
windows10-2004-x64
3$PLUGINSDI...ss.dll
windows7-x64
3$PLUGINSDI...ss.dll
windows10-2004-x64
3WebServe.exe
windows7-x64
1WebServe.exe
windows10-2004-x64
3General
-
Target
899e13fe14d5b35cd5d4cb093adfc4d4_JaffaCakes118
-
Size
10.4MB
-
Sample
241103-ey7mxaxpgp
-
MD5
899e13fe14d5b35cd5d4cb093adfc4d4
-
SHA1
e90bc3efca0798506f9f2cae54c4c853c62da268
-
SHA256
b05e3e8c9889342ec10dc94575868f4c4b2eefd6d6ff96174e1305cc39e9e891
-
SHA512
3aa6586620935ed0c9d8bfc493834b05e85514a808411eae0a79dee46b1477c02345dc01bc7550ec6d661403685f5e90fc761d2a4b2c4c83ffbf0acb8e4ae97f
-
SSDEEP
196608:J9+7xlxz7XiCyxbLAcfQA4XN8f0UtkTYVcn8Xyzp6+Q6aWBwzdAXy:cxzbiCyNUWQNd8fvt5ZwvdaWBwzd0y
Behavioral task
behavioral1
Sample
899e13fe14d5b35cd5d4cb093adfc4d4_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
899e13fe14d5b35cd5d4cb093adfc4d4_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/BgWorker.dll
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/BgWorker.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/GetVersion.dll
Resource
win7-20240903-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/GetVersion.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/Rfshdktp.dll
Resource
win7-20240903-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/Rfshdktp.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral9
Sample
$PLUGINSDIR/SkinBtn.dll
Resource
win7-20241010-en
Behavioral task
behavioral10
Sample
$PLUGINSDIR/SkinBtn.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral11
Sample
$PLUGINSDIR/SkinProgress.dll
Resource
win7-20241023-en
Behavioral task
behavioral12
Sample
$PLUGINSDIR/SkinProgress.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral13
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240708-en
Behavioral task
behavioral14
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral15
Sample
$PLUGINSDIR/WebCtrl.dll
Resource
win7-20240903-en
Behavioral task
behavioral16
Sample
$PLUGINSDIR/WebCtrl.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral17
Sample
$PLUGINSDIR/WndSubclass.dll
Resource
win7-20241010-en
Behavioral task
behavioral18
Sample
$PLUGINSDIR/WndSubclass.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral19
Sample
$PLUGINSDIR/inetc.dll
Resource
win7-20240903-en
Behavioral task
behavioral20
Sample
$PLUGINSDIR/inetc.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral21
Sample
$PLUGINSDIR/install_protocol.htm
Resource
win7-20240903-en
Behavioral task
behavioral22
Sample
$PLUGINSDIR/install_protocol.htm
Resource
win10v2004-20241007-en
Behavioral task
behavioral23
Sample
$PLUGINSDIR/jsScroll.js
Resource
win7-20240708-en
Behavioral task
behavioral24
Sample
$PLUGINSDIR/jsScroll.js
Resource
win10v2004-20241007-en
Behavioral task
behavioral25
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240903-en
Behavioral task
behavioral26
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral27
Sample
$PLUGINSDIR/nsExec.dll
Resource
win7-20241010-en
Behavioral task
behavioral28
Sample
$PLUGINSDIR/nsExec.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral29
Sample
$PLUGINSDIR/nsProcess.dll
Resource
win7-20241010-en
Behavioral task
behavioral30
Sample
$PLUGINSDIR/nsProcess.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral31
Sample
WebServe.exe
Resource
win7-20240903-en
Behavioral task
behavioral32
Sample
WebServe.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
899e13fe14d5b35cd5d4cb093adfc4d4_JaffaCakes118
-
Size
10.4MB
-
MD5
899e13fe14d5b35cd5d4cb093adfc4d4
-
SHA1
e90bc3efca0798506f9f2cae54c4c853c62da268
-
SHA256
b05e3e8c9889342ec10dc94575868f4c4b2eefd6d6ff96174e1305cc39e9e891
-
SHA512
3aa6586620935ed0c9d8bfc493834b05e85514a808411eae0a79dee46b1477c02345dc01bc7550ec6d661403685f5e90fc761d2a4b2c4c83ffbf0acb8e4ae97f
-
SSDEEP
196608:J9+7xlxz7XiCyxbLAcfQA4XN8f0UtkTYVcn8Xyzp6+Q6aWBwzdAXy:cxzbiCyNUWQNd8fvt5ZwvdaWBwzd0y
Score3/10 -
-
-
Target
$PLUGINSDIR/BgWorker.dll
-
Size
2KB
-
MD5
33ec04738007e665059cf40bc0f0c22b
-
SHA1
4196759a922e333d9b17bda5369f14c33cd5e3bc
-
SHA256
50f735ab8f3473423e6873d628150bbc0777be7b4f6405247cddf22bb00fb6be
-
SHA512
2318b01f0c2f2f021a618ca3e6e5c24a94df5d00154766b77160203b8b0a177c8581c7b688ffe69be93a69bc7fd06b8a589844d42447f5060fb4bcf94d8a9aef
Score3/10 -
-
-
Target
$PLUGINSDIR/GetVersion.dll
-
Size
6KB
-
MD5
5264f7d6d89d1dc04955cfb391798446
-
SHA1
211d8d3e7c2b2f57f54a11cb8bc4fa536df08acc
-
SHA256
7d76c7dd8f7cd5a87e0118dacb434db3971a049501e22a5f4b947154621ab3d4
-
SHA512
80d27ee2f87e2822bd5c8c55cc3d1e49beebb86d8557c92b52b7cbea9f27882d80e59eefa25e414eecee268a9a6193b6b50b748de33c778b007cde24ef8bcfb7
-
SSDEEP
96:E12Z84uiwpGTVTDSpaHYfniz0R3GhCvXY6Ix5vdR7pBi46AQ5Vu4:2STVTGwYhR3GhCvy5vH7pBi46AQ5Vu
Score3/10 -
-
-
Target
$PLUGINSDIR/Rfshdktp.dll
-
Size
2KB
-
MD5
9410591a148871a6d0629cf25b94526f
-
SHA1
be1e8b0fe8327f185136a0d2460a68f720484535
-
SHA256
acc76e81f71e7f2ba58c36d678bc9ae4705e0187a3cdfa6d0025190467d9c0c7
-
SHA512
465d3e418e769b907262e07cbca3d2c5132bf328431d456be09c059821be20a6d30106562d7ef0bfa93ca219b2abe57ee891d937419fc4b8840987b184b45df0
Score3/10 -
-
-
Target
$PLUGINSDIR/SkinBtn.dll
-
Size
4KB
-
MD5
e4ec95271ff1bcebab49bdfed6817a22
-
SHA1
2c03e97f4773aea80ecdb98a1482e5896fe4677b
-
SHA256
ee1c06692a757473737b0ebdef16f77b63afac864d0890022d905e4873737dd6
-
SHA512
771a527133806307a1b17b7e956d6a3c16e9bc675bf084b43204ae784a057dac2726dbf90645692876043a4e7365ba8825c167621fde4760c79cd84679e2aa3d
-
SSDEEP
48:iIf3aEDfeWm8JHFQbUrUPJJDFoetaxn/pFW3GNivz187eqzI/kMr8oX0Zbj:lv9Dfw8DQbhD2iaxn/PHmiNI/dQFZH
Score3/10 -
-
-
Target
$PLUGINSDIR/SkinProgress.dll
-
Size
4KB
-
MD5
cc037c4703d3ec257efeef2ce0a1a20e
-
SHA1
b3d6cc8f687a31fb2c1a5921a38de9429af20502
-
SHA256
888b32ecbc37ce67d4edc28d894cba0a4f4e2488cfc2212d1af011bd0bfe97ff
-
SHA512
120bfa0a68775bef04c1863023b0e73a41982284fb36da7f497fbb7d5ed8631ad02fa09951424d339f6fefaa90a17c12f949dd68bb33bad64b1b7cace489d2a7
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
bf712f32249029466fa86756f5546950
-
SHA1
75ac4dc4808ac148ddd78f6b89a51afbd4091c2e
-
SHA256
7851cb12fa4131f1fee5de390d650ef65cac561279f1cfe70ad16cc9780210af
-
SHA512
13f69959b28416e0b8811c962a49309dca3f048a165457051a28a3eb51377dcaf99a15e86d7eee8f867a9e25ecf8c44da370ac8f530eeae7b5252eaba64b96f4
-
SSDEEP
192:0N2gQuUwXzioj4KALV2upWzVd7q1QDXEbBZ8KxHdGzyS/Kx:rJoiO8V2upW7vQjS/
Score3/10 -
-
-
Target
$PLUGINSDIR/WebCtrl.dll
-
Size
5KB
-
MD5
418a34a689d5f9bb85fc951168749edb
-
SHA1
0b75ce26883e12944abdbb67c143000fd0905d6b
-
SHA256
915322078d1f8eb278250f446c1960e1555ffa0f8dcd048a48ed32fe7f5a5b3f
-
SHA512
9aabb74cfd37cbda4718077ba76c7906e0f3ab5949e99f9d800fb1952757a60cabe29413f054f62e2887ff57aeb9d355532fd1662ebf3a523a500b20fe702b90
-
SSDEEP
96:LyoDfEPD4Z0H3G7bLTb3LOg0AwBeRzrJ:LuP0aH3G/LX6g0x4Rz
Score3/10 -
-
-
Target
$PLUGINSDIR/WndSubclass.dll
-
Size
4KB
-
MD5
0a0218f11d82cdcc4f50de8edd58f3ca
-
SHA1
ba387579a8ddd175811c762902a9bf3a51ba9fd2
-
SHA256
938e4ae758aebc6f1609aab9f8d068689fba91c6f3bf5bb46e4df575616fcd29
-
SHA512
46742bc09b5199ac16fb2753a4b1584fa1b39d497869719e297574dfbfe4a0aa86ba7c6b77ef38e5e27734005c9d15036c52a577b08cfdfa104daae2ee756a5e
Score3/10 -
-
-
Target
$PLUGINSDIR/inetc.dll
-
Size
20KB
-
MD5
b720695fab871bacd48c54aea304c310
-
SHA1
e2250a8d65594d802cd95e8dde79f813ff9773c7
-
SHA256
f51fcc30e929a64756e04b514e103aa54c135c47d62511efee279f168f63b3c3
-
SHA512
c277bf5de16aa7f6aa39eda9afb010f8fa407bf4fef54b2a5947fd6c698204052b3f97e587ca59c5faf256c29a03e9de6c37033c5ede5666e3743b86f2ed411b
-
SSDEEP
384:jwB2ZUVHUxgoJX0eBA6PcH85db+ya9cC0Ac9khYLMkIX0+G5fQ6mT+m//a:jfUFeJ5S6PHLNa9c8am/
Score3/10 -
-
-
Target
$PLUGINSDIR/install_protocol.htm
-
Size
21KB
-
MD5
c607c7e52a5d16d7cd05a75b8cd72edb
-
SHA1
84ed5c0ce1e57747f333f79165c852a0f081e9ed
-
SHA256
1fd1e8ec5cafa23821477322a2b240dd0a5c1513ccc6fdbd8bfc0bcb837a074e
-
SHA512
7b7f1c661ff66183e88e348692f0296639bca62de08eb7d5eebf877fe38ea5bd93d6626039086084cee8dafa2a401d763b3bd9207e0100aebc686bfc3445855f
-
SSDEEP
384:T5kZ5mI2B3duy5abXY+vztniYKK8i/BEKxbSm+6os:T5kZ5mIShKXY+vz0YKBiZF2mAs
Score3/10 -
-
-
Target
$PLUGINSDIR/jsScroll.js
-
Size
4KB
-
MD5
24862d5a9c85c2c6792a26475de990bd
-
SHA1
dc5aed9172656a8112ebd8144df1e8ee4d2b39d7
-
SHA256
913da011a9a268a082669fb5f5d590f25e8f32e44bbd4b0e03e8e134712e0bbd
-
SHA512
983e50f7ccf62c812336573bdb461c8d017dc02fa21ad5886aa95b89eb09768098fa89982e798b996463758c826000f95bbeb5a6dc0c6d3cfb1f5ef723611f67
-
SSDEEP
96:Q+kET1Tt+484iCqPCvDdthTpFVDDlRcuP2hfdw:zx44845bNpbDERfy
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
4ccc4a742d4423f2f0ed744fd9c81f63
-
SHA1
704f00a1acc327fd879cf75fc90d0b8f927c36bc
-
SHA256
416133dd86c0dff6b0fcaf1f46dfe97fdc85b37f90effb2d369164a8f7e13ae6
-
SHA512
790c5eb1f8b297e45054c855b66dfc18e9f3f1b1870559014dbefa3b9d5b6d33a993a9e089202e70f51a55d859b74e8605c6f633386fd9189b6f78941bf1bfdb
-
SSDEEP
192:SbEunjqjIcESwFlioU3M0LLF/t8t9pKSfOi:SbESjFCw6oWPFl8jfOi
Score3/10 -
-
-
Target
$PLUGINSDIR/nsExec.dll
-
Size
6KB
-
MD5
132e6153717a7f9710dcea4536f364cd
-
SHA1
e39bc82c7602e6dd0797115c2bd12e872a5fb2ab
-
SHA256
d29afce2588d8dd7bb94c00ca91cac0e85b80ffa6b221f5ffcb83a2497228eb2
-
SHA512
9aeb0b3051ce07fb9f03dfee7cea4a5e423425e48cb538173bd2a167817f867a30bd4d27d07875f27ca00031745b24547030b7f146660b049fa717590f1c77e1
-
SSDEEP
96:M/SspqrIYxLPEQhThvov3TE4/2Sa5P9QFFYzOx4uF3sbSEI5LP39sQvM:M/QUG7lhvov36S5FcUjliSEI5LuQ
Score3/10 -
-
-
Target
$PLUGINSDIR/nsProcess.dll
-
Size
4KB
-
MD5
05450face243b3a7472407b999b03a72
-
SHA1
ffd88af2e338ae606c444390f7eaaf5f4aef2cd9
-
SHA256
95fe9d92512ff2318cc2520311ef9145b2cee01209ab0e1b6e45c7ce1d4d0e89
-
SHA512
f4cbe30166aff20a226a7150d93a876873ba699d80d7e9f46f32a9b4753fa7966c3113a3124340b39ca67a13205463a413e740e541e742903e3f89af5a53ad3b
Score3/10 -
-
-
Target
WebServe.exe
-
Size
361KB
-
MD5
af91b065071e53b4f164ec441f220f09
-
SHA1
810eb432caf8b2ccb7b6d2fc5c84ba5596023257
-
SHA256
528f5528e14b8acfb62be9a1ff4d78c4e02ac8d1cc10de777b043a2b89f3843e
-
SHA512
1ca2d1381c1d419e351cced8ae19358d48a5c248faf7e7ae44e140b08b78487d80921ec03463d523f5f725359bdafe4938d564565f443e42bf271842673f672c
-
SSDEEP
6144:LbMmcwukkkl8vu11zLMBL+SH/mesCBnpOd/FGFN7iMdwFvfCRlOTIhRJ:Lomcwuhkl86zwv/mMnpOdd4RiMufCjJ
Score3/10 -