Overview

overview

10

Static

static

10

36e736330c...18.exe

windows7-x64

10

36e736330c...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    36e736330cf2d5ab422fd37c6d9fa789_JaffaCakes118

  • Size

    10.0MB

  • MD5

    36e736330cf2d5ab422fd37c6d9fa789

  • SHA1

    76840697135e355f07091d21f95e408b81baba27

  • SHA256

    13c061394ac647cce694961d45cfa972f7cbe44a26135416f8b08eec67d8d6c9

  • SHA512

    71e6c2e7b77ea81de966eb2d8ba8876dacf43a004dbdf2355fe4d597a9f2aaf61507711da69dde95b6476536c829c272b17b0e0b03c0db746ef958fd6649def1

  • SSDEEP

    196608:Ta9+6Y7SOEibgR5ghi1qfjZPzmGP8/Er23:TFgR4iQfEG

Score
10/10
minerupxblackmoonxmrigprivateloader

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Privateloader family
    privateloader
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 36e736330cf2d5ab422fd37c6d9fa789_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections