General
-
Target
02310ead7fadf163c007cb39a698a4b6_JaffaCakes118
-
Size
1.8MB
-
Sample
240427-cqv8sshh5s
-
MD5
02310ead7fadf163c007cb39a698a4b6
-
SHA1
ec61262eded4a2a4808e8c77c135e61640ee820d
-
SHA256
5d949965ad0a26194b15fd16f1731b36e7c1e785ac56dbc21601e6cfc9147f85
-
SHA512
feb7b7ee371af2f2bd98d544b573bada63d560768a0abc482e191df0d675975a7a33e4d7c8e154aebd29cdc69b27f059eb141a67f233748012900a95d43b24d1
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlY:NABN
Malware Config
Targets
-
-
Target
02310ead7fadf163c007cb39a698a4b6_JaffaCakes118
-
Size
1.8MB
-
MD5
02310ead7fadf163c007cb39a698a4b6
-
SHA1
ec61262eded4a2a4808e8c77c135e61640ee820d
-
SHA256
5d949965ad0a26194b15fd16f1731b36e7c1e785ac56dbc21601e6cfc9147f85
-
SHA512
feb7b7ee371af2f2bd98d544b573bada63d560768a0abc482e191df0d675975a7a33e4d7c8e154aebd29cdc69b27f059eb141a67f233748012900a95d43b24d1
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlY:NABN
Score10/10-
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Legitimate hosting services abused for malware hosting/C2
-