General

  • Target

    0c3fa68dfd09b2ab3befac95fdf9c3f7_JaffaCakes118

  • Size

    21.0MB

  • MD5

    0c3fa68dfd09b2ab3befac95fdf9c3f7

  • SHA1

    ba3a41ff1d9f707530d58e85c736426bfb0a1853

  • SHA256

    e34d0106b8594a67b3715254a916034582643cebc65d8613208f915fc1bcec94

  • SHA512

    d742db0d78fa9c25ede6206e750cd3f5014133ee1485b02d465d326a63a1c76f4c827ca8c912e041c2d881207947d82257f97ed8d59ab6d3643fa33e0297bac7

  • SSDEEP

    393216:dFgRrg6+nFgRrg6+qFgRrg6+nFgRrg6+Kzk:KgWgpgWgczk

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • Privateloader family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 0c3fa68dfd09b2ab3befac95fdf9c3f7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections