General
-
Target
033c30d956a993f9d96e9a3ffd92dfd1_JaffaCakes118
-
Size
1.9MB
-
Sample
240427-phxswaba3t
-
MD5
033c30d956a993f9d96e9a3ffd92dfd1
-
SHA1
4aad140d217e52644670c40af09de51757fef032
-
SHA256
b4ff83b1e925fc3987fb32f36529f12fb83502c02c13527f6e9690dd511b9bf2
-
SHA512
701edc13f9dabd657bc72f7fab2216ec9f6d2265beed58650bf06391a3379f6093b30338b187b5763dc218a44e8fb02388eae8ebc5a3034c0600c77728304945
-
SSDEEP
49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+Ux:NAB4
Behavioral task
behavioral1
Sample
033c30d956a993f9d96e9a3ffd92dfd1_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
033c30d956a993f9d96e9a3ffd92dfd1_JaffaCakes118
-
Size
1.9MB
-
MD5
033c30d956a993f9d96e9a3ffd92dfd1
-
SHA1
4aad140d217e52644670c40af09de51757fef032
-
SHA256
b4ff83b1e925fc3987fb32f36529f12fb83502c02c13527f6e9690dd511b9bf2
-
SHA512
701edc13f9dabd657bc72f7fab2216ec9f6d2265beed58650bf06391a3379f6093b30338b187b5763dc218a44e8fb02388eae8ebc5a3034c0600c77728304945
-
SSDEEP
49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+Ux:NAB4
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-