Overview

overview

10

Static

static

10

13ef22ab83...18.exe

windows7-x64

10

13ef22ab83...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    13ef22ab835e6f33737a75a3fb310c39_JaffaCakes118

  • Size

    24.1MB

  • MD5

    13ef22ab835e6f33737a75a3fb310c39

  • SHA1

    da1368b180691cb715aedbe7797b89255eaa8528

  • SHA256

    569006b363a43cc29d9d15b5dd47131d86e853d4fe5c3c0e1a915ec87d5c1e1d

  • SHA512

    dcfa3e6f7b485523823b39000e63908601be855f38e582328de1026ac6ee86145b084ac7eb72fdf6e04384e16b2084063b0f233b1e70db4f210d38af5a099bd1

  • SSDEEP

    393216:TFgR2KnyzPpeEFgR2KnyzPpeyJFgR2KnyzPpeEFgR2KnyzPpey2A:dKnyTnKnyTLjKnyTnKnyTLP

Score
10/10
minerupxblackmoonxmrigprivateloader

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Privateloader family
    privateloader
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 13ef22ab835e6f33737a75a3fb310c39_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections