Overview

overview

10

Static

static

10

09376d4b4c...18.exe

windows7-x64

10

09376d4b4c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    09376d4b4c0299feb55ebf9c35ef8e63_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240430-g1e2saec55

  • MD5

    09376d4b4c0299feb55ebf9c35ef8e63

  • SHA1

    82dda1ecccdcd591a5e4758c2b31de08fb119165

  • SHA256

    707c9accc48e8733ec2c841648df291245d999207bb434c0af133d97ccb36ab8

  • SHA512

    d6de8347c892b0ff266024a42da9be2c2aafce22dc48e5cf41975c9efe9e9a84d28ca0b3e72c89349d6adbc8533c61415000feaf5f26c79bf785b3ebe2ee0713

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+UXo:NABf

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      09376d4b4c0299feb55ebf9c35ef8e63_JaffaCakes118

    • Size

      1.9MB

    • MD5

      09376d4b4c0299feb55ebf9c35ef8e63

    • SHA1

      82dda1ecccdcd591a5e4758c2b31de08fb119165

    • SHA256

      707c9accc48e8733ec2c841648df291245d999207bb434c0af133d97ccb36ab8

    • SHA512

      d6de8347c892b0ff266024a42da9be2c2aafce22dc48e5cf41975c9efe9e9a84d28ca0b3e72c89349d6adbc8533c61415000feaf5f26c79bf785b3ebe2ee0713

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+UXo:NABf

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks