General
-
Target
0168607d2091b08e6e076a61e15b9fed_JaffaCakes118
-
Size
2.2MB
-
Sample
240426-w9fr1ahf86
-
MD5
0168607d2091b08e6e076a61e15b9fed
-
SHA1
bb8cbbcf6f6cbd9583726a639c562416c6b8de51
-
SHA256
1ae59340f7dcc6eb1864d16652b602124d00f9a3edea2c41d3e27539f2d6d04f
-
SHA512
0031d16be6a459bcb607bd622de55a1e73e517cd746e2059117bc179df031b2b8fb91630a7b1ee934a0eee1e79e2fdefb9046adfecee2f1defdfb6284776e9e8
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrfq:NAB1
Behavioral task
behavioral1
Sample
0168607d2091b08e6e076a61e15b9fed_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
0168607d2091b08e6e076a61e15b9fed_JaffaCakes118
-
Size
2.2MB
-
MD5
0168607d2091b08e6e076a61e15b9fed
-
SHA1
bb8cbbcf6f6cbd9583726a639c562416c6b8de51
-
SHA256
1ae59340f7dcc6eb1864d16652b602124d00f9a3edea2c41d3e27539f2d6d04f
-
SHA512
0031d16be6a459bcb607bd622de55a1e73e517cd746e2059117bc179df031b2b8fb91630a7b1ee934a0eee1e79e2fdefb9046adfecee2f1defdfb6284776e9e8
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrfq:NAB1
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-