General
-
Target
02a67b059a869249d005aec1e4c8c352_JaffaCakes118
-
Size
1.9MB
-
Sample
240427-hfvgeadc28
-
MD5
02a67b059a869249d005aec1e4c8c352
-
SHA1
0e3a45a9647525bedd653f9c650a62d4d7690816
-
SHA256
5b34e1764548f2f04bf034cf5fbe9831ccdf926a7e44c5bb55d057f11d853d2c
-
SHA512
3f9988f1d30f8f1847a2fceb38b34a691dd4d45615d79ac7218042d9170e2fe7715125d66b618a92917e41d5b3600eabf5a996c4e4c0ea9a71d5e830b85a0d9d
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlYV:NABn
Behavioral task
behavioral1
Sample
02a67b059a869249d005aec1e4c8c352_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
02a67b059a869249d005aec1e4c8c352_JaffaCakes118
-
Size
1.9MB
-
MD5
02a67b059a869249d005aec1e4c8c352
-
SHA1
0e3a45a9647525bedd653f9c650a62d4d7690816
-
SHA256
5b34e1764548f2f04bf034cf5fbe9831ccdf926a7e44c5bb55d057f11d853d2c
-
SHA512
3f9988f1d30f8f1847a2fceb38b34a691dd4d45615d79ac7218042d9170e2fe7715125d66b618a92917e41d5b3600eabf5a996c4e4c0ea9a71d5e830b85a0d9d
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrlYV:NABn
-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-