General
-
Target
016677e71497a8f157852370dbf12579_JaffaCakes118
-
Size
1.8MB
-
Sample
240426-w7ag7sae61
-
MD5
016677e71497a8f157852370dbf12579
-
SHA1
512105d6e98a6c87c08055d382d1ee552dbe0c19
-
SHA256
812d0728e17fadcc9515e421e035de483af3eb08ba99e635ddf95902b2428d7c
-
SHA512
d4d3cdf8039fb39a0b19d7438b86a0f6c9644432be193e6c4d5d5a4836573e4edb8d7791d6c4cee5ec6901e9375ce9c10b8002519daca4d56ab22f8b0517436f
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlz:NABs
Behavioral task
behavioral1
Sample
016677e71497a8f157852370dbf12579_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
016677e71497a8f157852370dbf12579_JaffaCakes118
-
Size
1.8MB
-
MD5
016677e71497a8f157852370dbf12579
-
SHA1
512105d6e98a6c87c08055d382d1ee552dbe0c19
-
SHA256
812d0728e17fadcc9515e421e035de483af3eb08ba99e635ddf95902b2428d7c
-
SHA512
d4d3cdf8039fb39a0b19d7438b86a0f6c9644432be193e6c4d5d5a4836573e4edb8d7791d6c4cee5ec6901e9375ce9c10b8002519daca4d56ab22f8b0517436f
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlz:NABs
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-