Overview

overview

10

Static

static

10

05af805926...18.exe

windows7-x64

10

05af805926...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    05af8059269d76cb7f5929bd03953749_JaffaCakes118

  • Size

    18.6MB

  • MD5

    05af8059269d76cb7f5929bd03953749

  • SHA1

    a614ff5395c53a8cf0fdee31dd6fcc32277faae3

  • SHA256

    92f91b9e78c49bd39cc7a446f4d63dec275d34da99d2d5ed742a069be41ce77b

  • SHA512

    5e6470d76ed3575b446e84b4a8734a9d0e92fe4bc98266ce06861464379071f094e3974ef259f9fc580f78f8286f220ac3201436ceae444765391bda8013fdb1

  • SSDEEP

    393216:TFgRsWeW0QfSWgyzPpeSKfFgRsWeW0QfSWgyzPpeSKS2:o0yTjKU0yTjKB

Score
10/10
minerupxblackmoonxmrig

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 05af8059269d76cb7f5929bd03953749_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections