General
-
Target
0938f66df725143335dc34a5b839c5c2_JaffaCakes118
-
Size
1.6MB
-
Sample
240430-g3vv1seh2s
-
MD5
0938f66df725143335dc34a5b839c5c2
-
SHA1
0e7345d330b03417539b24ef6607cc1f2058254e
-
SHA256
3966bf10a679055cca2ef9b25d8f08070059678df9e2156539dd44bb9f7f4f14
-
SHA512
839dcb3659abb25439881d6bc1ccb92fe121bcf6fcaeb0ddbe050f25c22d31b621f514f358d4ede0ad8a124f6fea760780880bc6ae0ecf21e0a63128736f4062
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82Sz/:NABO
Behavioral task
behavioral1
Sample
0938f66df725143335dc34a5b839c5c2_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Targets
-
-
Target
0938f66df725143335dc34a5b839c5c2_JaffaCakes118
-
Size
1.6MB
-
MD5
0938f66df725143335dc34a5b839c5c2
-
SHA1
0e7345d330b03417539b24ef6607cc1f2058254e
-
SHA256
3966bf10a679055cca2ef9b25d8f08070059678df9e2156539dd44bb9f7f4f14
-
SHA512
839dcb3659abb25439881d6bc1ccb92fe121bcf6fcaeb0ddbe050f25c22d31b621f514f358d4ede0ad8a124f6fea760780880bc6ae0ecf21e0a63128736f4062
-
SSDEEP
49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82Sz/:NABO
-
XMRig Miner payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-