Overview

overview

10

Static

static

7

00b343deb0...18.exe

windows7-x64

10

00b343deb0...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    00b343deb0296dc284079cb7d003c17a_JaffaCakes118

  • Size

    6.8MB

  • Sample

    240426-nzxc1afh73

  • MD5

    00b343deb0296dc284079cb7d003c17a

  • SHA1

    92cfd278aaf47e3233e798eff544397e82ebd2c5

  • SHA256

    6c2b9d676113e66fdca2da62a77c30c44fa0a0866f44a24bdd57dfcb5e7c2206

  • SHA512

    0c633cea6dcd45fc0b4dccd11661aa467b3e09f4eef1ab6a605e3ff64940afe95d4bdf53f25e57514e966ec6b739900b512afc13353f0bae917a08f8679c8705

  • SSDEEP

    49152:shw3DAcwLj0z1xuMofmJfbs924R3x4UJCjfleABOExwq5t/pm2tWDDxUmAk1odVm:sgkFM3DcH/J8vBO6x5tRm2tAUmA1btb2

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      00b343deb0296dc284079cb7d003c17a_JaffaCakes118

    • Size

      6.8MB

    • MD5

      00b343deb0296dc284079cb7d003c17a

    • SHA1

      92cfd278aaf47e3233e798eff544397e82ebd2c5

    • SHA256

      6c2b9d676113e66fdca2da62a77c30c44fa0a0866f44a24bdd57dfcb5e7c2206

    • SHA512

      0c633cea6dcd45fc0b4dccd11661aa467b3e09f4eef1ab6a605e3ff64940afe95d4bdf53f25e57514e966ec6b739900b512afc13353f0bae917a08f8679c8705

    • SSDEEP

      49152:shw3DAcwLj0z1xuMofmJfbs924R3x4UJCjfleABOExwq5t/pm2tWDDxUmAk1odVm:sgkFM3DcH/J8vBO6x5tRm2tAUmA1btb2

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks