General

  • Target

    29d9c97457e3431b6153e11761aef0f1_JaffaCakes118

  • Size

    23.0MB

  • MD5

    29d9c97457e3431b6153e11761aef0f1

  • SHA1

    358cffe25d2808a2acf4c6e0eb7d63fb914bfcab

  • SHA256

    847ed67674022766fce058d4a17692f53e18d96aca7989a3797689b77a6f17b9

  • SHA512

    30ba141c34d20c4209740d4768dc769bf5cd406fc4e6c6dcb76f16840c5b128adc1223f6738d1a3353dbc55365ed84b2c88c2a3219df5e0896539d693e92440e

  • SSDEEP

    393216:TFgRYBzyzPpe1vDll/yzPpeb1wFgRYBzyzPpe1vDll/yzPpeb1mRu:dzyT6vDll/yTFzyT6vDll/yTs

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • Privateloader family
  • XMRig Miner payload 1 IoCs
  • Xmrig family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 29d9c97457e3431b6153e11761aef0f1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections