General
-
Target
03c7e7e8016bcb72c69cf85052f2a180_JaffaCakes118
-
Size
1.9MB
-
Sample
240427-2hq2jsaa99
-
MD5
03c7e7e8016bcb72c69cf85052f2a180
-
SHA1
d845d9e1408e2507176df706e99aa7fe84b7f0c0
-
SHA256
904a878e7b0a066e0bf9ba76400a35c9d18aa5d2d7cb9a3bcc115a11298479a2
-
SHA512
2f0c0454cc3e384301f9a0416f17106e4223796b848a2d38da8c1d95b8f4ebf37895ee56bf48054a30ebe873573d01ce87e85a1b90a94c7fa8a2f5e31f3b9d74
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrl/S:NABH
Behavioral task
behavioral1
Sample
03c7e7e8016bcb72c69cf85052f2a180_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
03c7e7e8016bcb72c69cf85052f2a180_JaffaCakes118
-
Size
1.9MB
-
MD5
03c7e7e8016bcb72c69cf85052f2a180
-
SHA1
d845d9e1408e2507176df706e99aa7fe84b7f0c0
-
SHA256
904a878e7b0a066e0bf9ba76400a35c9d18aa5d2d7cb9a3bcc115a11298479a2
-
SHA512
2f0c0454cc3e384301f9a0416f17106e4223796b848a2d38da8c1d95b8f4ebf37895ee56bf48054a30ebe873573d01ce87e85a1b90a94c7fa8a2f5e31f3b9d74
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrl/S:NABH
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-