General
-
Target
015d41d93b0e82e550c777ab79e327dc_JaffaCakes118
-
Size
1.7MB
-
Sample
240426-wtgdlahc54
-
MD5
015d41d93b0e82e550c777ab79e327dc
-
SHA1
a743f18123d75324f2320bafd589759a4d881e95
-
SHA256
51dcbc5f7dd9fdfc5f14b89a1ad4e60fa1c414ad1f3637c8d328e2e592ffa52f
-
SHA512
5a2b45b9ec4e7dd4407406e514663898685a3f0b58581ca282349e2c838c0c62cfb28298efda2cf0676bb77fb760cd0bb93fcfc93fd1db6db33887c56b2c3a78
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWY1s38kQu12bPxvyuzaBgJ9pcFtG:Lz071uv4BPMkibTIA5I4TNrpDGgDQIB
Behavioral task
behavioral1
Sample
015d41d93b0e82e550c777ab79e327dc_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
015d41d93b0e82e550c777ab79e327dc_JaffaCakes118
-
Size
1.7MB
-
MD5
015d41d93b0e82e550c777ab79e327dc
-
SHA1
a743f18123d75324f2320bafd589759a4d881e95
-
SHA256
51dcbc5f7dd9fdfc5f14b89a1ad4e60fa1c414ad1f3637c8d328e2e592ffa52f
-
SHA512
5a2b45b9ec4e7dd4407406e514663898685a3f0b58581ca282349e2c838c0c62cfb28298efda2cf0676bb77fb760cd0bb93fcfc93fd1db6db33887c56b2c3a78
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWY1s38kQu12bPxvyuzaBgJ9pcFtG:Lz071uv4BPMkibTIA5I4TNrpDGgDQIB
-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-