General
-
Target
032be455280c06ff33f338d0d82365b3_JaffaCakes118
-
Size
1.7MB
-
Sample
240427-ntaxtahf77
-
MD5
032be455280c06ff33f338d0d82365b3
-
SHA1
c6c5d9ee0042cdaba08902a15675fd70f917be76
-
SHA256
75ccda284c22b210f2c2fbc450a3c1ea329d864ad465556e574a60f03118163c
-
SHA512
2f98df828f8c4adbb7c6aeaede91799287df30a640d743f290ec3e2b36f4363f9d6d810806a56c00950b5e6f7226407136ec770ed04ae21a3530d1c82552eed4
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SGkMKE:NABv
Behavioral task
behavioral1
Sample
032be455280c06ff33f338d0d82365b3_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
032be455280c06ff33f338d0d82365b3_JaffaCakes118
-
Size
1.7MB
-
MD5
032be455280c06ff33f338d0d82365b3
-
SHA1
c6c5d9ee0042cdaba08902a15675fd70f917be76
-
SHA256
75ccda284c22b210f2c2fbc450a3c1ea329d864ad465556e574a60f03118163c
-
SHA512
2f98df828f8c4adbb7c6aeaede91799287df30a640d743f290ec3e2b36f4363f9d6d810806a56c00950b5e6f7226407136ec770ed04ae21a3530d1c82552eed4
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SGkMKE:NABv
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-