General

  • Target

    0b0591e0233b38f436b32a60a7a06a97_JaffaCakes118

  • Size

    2.2MB

  • MD5

    0b0591e0233b38f436b32a60a7a06a97

  • SHA1

    e5cdc118645d224d3176e30f330c12ebca1af228

  • SHA256

    0aae9d3af92089bbca1c326044122710cd0cd0dcda17abd84617c89f1ddeb4aa

  • SHA512

    3c3f6709f5a17709e09a3278a1a449c54fa89b89c5eb140973dc3471e4ed42d2438370cd41d7ed9b4bb48cb29a67b4aae010981f10d8e7f6e5f395960f56bb45

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pCkc30JqMopiqh:NABY

Score
10/10

Malware Config

Signatures

  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 0b0591e0233b38f436b32a60a7a06a97_JaffaCakes118
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • out.upx
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections