General
-
Target
02a761cdb9ac5fa2dca1b8552dba7a87_JaffaCakes118
-
Size
1.9MB
-
Sample
240427-hg2l4sdc39
-
MD5
02a761cdb9ac5fa2dca1b8552dba7a87
-
SHA1
71f8dc9ff7a10654c20debe1c992502a4b9195b4
-
SHA256
272b43232f1628389f2968a8a77ec11b71c987eb75bb0b6f3d3c10f10acb5ea2
-
SHA512
c74fad44d0c633c3704f0d3bf77a59f3b91a79da65823cfcf57616ee40bc11ae996a9787f03fb5fb0ca7164e35207819725747f2e8ec0f8d12cb44aa764fe128
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrloW:NABa
Behavioral task
behavioral1
Sample
02a761cdb9ac5fa2dca1b8552dba7a87_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Targets
-
-
Target
02a761cdb9ac5fa2dca1b8552dba7a87_JaffaCakes118
-
Size
1.9MB
-
MD5
02a761cdb9ac5fa2dca1b8552dba7a87
-
SHA1
71f8dc9ff7a10654c20debe1c992502a4b9195b4
-
SHA256
272b43232f1628389f2968a8a77ec11b71c987eb75bb0b6f3d3c10f10acb5ea2
-
SHA512
c74fad44d0c633c3704f0d3bf77a59f3b91a79da65823cfcf57616ee40bc11ae996a9787f03fb5fb0ca7164e35207819725747f2e8ec0f8d12cb44aa764fe128
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrloW:NABa
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-