General
-
Target
0330b86cb2b13b444173fc3d9b0449ea_JaffaCakes118
-
Size
1.9MB
-
Sample
240427-n2pqyaaa34
-
MD5
0330b86cb2b13b444173fc3d9b0449ea
-
SHA1
df5ed894cbee9d40b8056d665ea747dd308a8865
-
SHA256
56c64079765ccb30842e67aa77989675fdfc58cd822e0ca1e8077cb0c18b8966
-
SHA512
29e0eeb643065441565e2d50009fdc5a4739633c1ef9ab86f5fdd166d2cdfb984b5156d64a664810d2996fc1b8cc8ce47702c84e7935d003e6086ac700fb0b05
-
SSDEEP
49152:Lz071uv4BPMkibTIA5lCx7kvRWa4p/pOSrt:NABt
Behavioral task
behavioral1
Sample
0330b86cb2b13b444173fc3d9b0449ea_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
0330b86cb2b13b444173fc3d9b0449ea_JaffaCakes118
-
Size
1.9MB
-
MD5
0330b86cb2b13b444173fc3d9b0449ea
-
SHA1
df5ed894cbee9d40b8056d665ea747dd308a8865
-
SHA256
56c64079765ccb30842e67aa77989675fdfc58cd822e0ca1e8077cb0c18b8966
-
SHA512
29e0eeb643065441565e2d50009fdc5a4739633c1ef9ab86f5fdd166d2cdfb984b5156d64a664810d2996fc1b8cc8ce47702c84e7935d003e6086ac700fb0b05
-
SSDEEP
49152:Lz071uv4BPMkibTIA5lCx7kvRWa4p/pOSrt:NABt
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-