General
-
Target
02a98b92d5827c2b27d2f5e0c3d7422a_JaffaCakes118
-
Size
5.7MB
-
Sample
240427-hlz9vadc96
-
MD5
02a98b92d5827c2b27d2f5e0c3d7422a
-
SHA1
6ecf3d089bda0a9b168f3a8fa9f782d1fd67e502
-
SHA256
98c99bc79acfad3e75ef8307ce42e2d0ef09de8bd82009215550aaae984c1e27
-
SHA512
b4db3d9de24c4d14fbbc91ea8c6a8ae1f725d149cc17bfef190326bdf216eab3299e93bbc286e649cda122e82b2507fcbb54f20d5446669a95f945ff42ebf4e7
-
SSDEEP
98304:XAEe6gZaY57jzaOkW/7UQ2VprDdSFlmXCkBmfMtOlThkY:QE3qaY5TUW92VWFEXC6mUQThX
Behavioral task
behavioral1
Sample
02a98b92d5827c2b27d2f5e0c3d7422a_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Targets
-
-
Target
02a98b92d5827c2b27d2f5e0c3d7422a_JaffaCakes118
-
Size
5.7MB
-
MD5
02a98b92d5827c2b27d2f5e0c3d7422a
-
SHA1
6ecf3d089bda0a9b168f3a8fa9f782d1fd67e502
-
SHA256
98c99bc79acfad3e75ef8307ce42e2d0ef09de8bd82009215550aaae984c1e27
-
SHA512
b4db3d9de24c4d14fbbc91ea8c6a8ae1f725d149cc17bfef190326bdf216eab3299e93bbc286e649cda122e82b2507fcbb54f20d5446669a95f945ff42ebf4e7
-
SSDEEP
98304:XAEe6gZaY57jzaOkW/7UQ2VprDdSFlmXCkBmfMtOlThkY:QE3qaY5TUW92VWFEXC6mUQThX
-
XMRig Miner payload
-
Legitimate hosting services abused for malware hosting/C2
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-