Overview

overview

10

Static

static

10

0330b86cb2...18.exe

windows7-x64

10

0330b86cb2...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0330b86cb2b13b444173fc3d9b0449ea_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240427-n2pqyaaa34

  • MD5

    0330b86cb2b13b444173fc3d9b0449ea

  • SHA1

    df5ed894cbee9d40b8056d665ea747dd308a8865

  • SHA256

    56c64079765ccb30842e67aa77989675fdfc58cd822e0ca1e8077cb0c18b8966

  • SHA512

    29e0eeb643065441565e2d50009fdc5a4739633c1ef9ab86f5fdd166d2cdfb984b5156d64a664810d2996fc1b8cc8ce47702c84e7935d003e6086ac700fb0b05

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4p/pOSrt:NABt

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      0330b86cb2b13b444173fc3d9b0449ea_JaffaCakes118

    • Size

      1.9MB

    • MD5

      0330b86cb2b13b444173fc3d9b0449ea

    • SHA1

      df5ed894cbee9d40b8056d665ea747dd308a8865

    • SHA256

      56c64079765ccb30842e67aa77989675fdfc58cd822e0ca1e8077cb0c18b8966

    • SHA512

      29e0eeb643065441565e2d50009fdc5a4739633c1ef9ab86f5fdd166d2cdfb984b5156d64a664810d2996fc1b8cc8ce47702c84e7935d003e6086ac700fb0b05

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5lCx7kvRWa4p/pOSrt:NABt

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks