General

  • Target

    06d9a678dfb164801192d79281d7b955_JaffaCakes118

  • Size

    2.1MB

  • MD5

    06d9a678dfb164801192d79281d7b955

  • SHA1

    153e5b39171958bb313e24d72c75b561c6056d7e

  • SHA256

    c976bb2cb3c40253fb115775d17ab9f6998a8c954c5cd3470adde7a6d3f8e80c

  • SHA512

    d4d0ac9d7aa40c7526308f14d181afb11845cedf7a57784b58941517e54775951d4e33972ca57f9e209ad16d8d136e182add28d6d88663a755235a536a4936c0

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrJ:NABu

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 06d9a678dfb164801192d79281d7b955_JaffaCakes118
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections