Overview

overview

10

Static

static

10

01f94aef79...18.exe

windows7-x64

10

01f94aef79...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    01f94aef79f968f4cb3264e841a1e422_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240427-agczrafg9t

  • MD5

    01f94aef79f968f4cb3264e841a1e422

  • SHA1

    941bb0dec1bc423a344d32a0fe0a4ef928a32003

  • SHA256

    d7959e0b5da1be9b7b5cb4601164c4fd4b31200e35c482b3b66f4f433ef3ae24

  • SHA512

    befd5f53579d9d1f5c80aa9906844b2726bed8dcd1ded7d5e2d86b0637056854ca6465daa31abf41ae1f7861c5769467f9fc04c3274b7e0306c7942586955a13

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlU:NABj

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      01f94aef79f968f4cb3264e841a1e422_JaffaCakes118

    • Size

      1.9MB

    • MD5

      01f94aef79f968f4cb3264e841a1e422

    • SHA1

      941bb0dec1bc423a344d32a0fe0a4ef928a32003

    • SHA256

      d7959e0b5da1be9b7b5cb4601164c4fd4b31200e35c482b3b66f4f433ef3ae24

    • SHA512

      befd5f53579d9d1f5c80aa9906844b2726bed8dcd1ded7d5e2d86b0637056854ca6465daa31abf41ae1f7861c5769467f9fc04c3274b7e0306c7942586955a13

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlU:NABj

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks