General
-
Target
02e477d1c03fb3399e966ee49080b1ec_JaffaCakes118
-
Size
1.9MB
-
Sample
240427-k1mneafc34
-
MD5
02e477d1c03fb3399e966ee49080b1ec
-
SHA1
a9f1de32d3de62b81e9f55a0599d39e885a74991
-
SHA256
25bdd5756b9e31a37fa606897d74dabc0b7a08f637f882cd98f0fec7cfce05a0
-
SHA512
523eff668e90f12d2dd29acf7e73dd8633aa1f568d77bf5a506272a28f5d228757444a0ec37f08709ea7d61db87aff9df046c071e486c3c83966aaf48d6e07c7
-
SSDEEP
49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+U1B:NABs
Behavioral task
behavioral1
Sample
02e477d1c03fb3399e966ee49080b1ec_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Targets
-
-
Target
02e477d1c03fb3399e966ee49080b1ec_JaffaCakes118
-
Size
1.9MB
-
MD5
02e477d1c03fb3399e966ee49080b1ec
-
SHA1
a9f1de32d3de62b81e9f55a0599d39e885a74991
-
SHA256
25bdd5756b9e31a37fa606897d74dabc0b7a08f637f882cd98f0fec7cfce05a0
-
SHA512
523eff668e90f12d2dd29acf7e73dd8633aa1f568d77bf5a506272a28f5d228757444a0ec37f08709ea7d61db87aff9df046c071e486c3c83966aaf48d6e07c7
-
SSDEEP
49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+U1B:NABs
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-