General
-
Target
0335d429df811182459b84ad1979b539_JaffaCakes118
-
Size
2.1MB
-
Sample
240427-n93b1aab73
-
MD5
0335d429df811182459b84ad1979b539
-
SHA1
21eecd3d1ea9e463d2d7845b9e94671f026a9d84
-
SHA256
8c7ae990e9f828a196e9ab7951c952d1f446fb75ea7e1b0dc3cc9fc72d6c79f5
-
SHA512
acc3b38231533bec4ad5809c18defff463a2081b1068296af2db4ebf683f468a9f8cafeb10da3970d48161ac641474e846cb2e5560e028182aa6177976bd6fb8
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrP:NAB+
Behavioral task
behavioral1
Sample
0335d429df811182459b84ad1979b539_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Targets
-
-
Target
0335d429df811182459b84ad1979b539_JaffaCakes118
-
Size
2.1MB
-
MD5
0335d429df811182459b84ad1979b539
-
SHA1
21eecd3d1ea9e463d2d7845b9e94671f026a9d84
-
SHA256
8c7ae990e9f828a196e9ab7951c952d1f446fb75ea7e1b0dc3cc9fc72d6c79f5
-
SHA512
acc3b38231533bec4ad5809c18defff463a2081b1068296af2db4ebf683f468a9f8cafeb10da3970d48161ac641474e846cb2e5560e028182aa6177976bd6fb8
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrP:NAB+
-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-