Overview

overview

10

Static

static

7

.xxxz/h32

ubuntu-20.04-amd64

.xxxz/h64

ubuntu-20.04-amd64

1

.xxxz/md

ubuntu-20.04-amd64

10

.xxxz/run

ubuntu-18.04-amd64

3

.xxxz/run

debian-9-armhf

1

.xxxz/run

debian-9-mips

.xxxz/run

debian-9-mipsel

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e7bc9f68da01204f7d842af72a572e6_JaffaCakes118

  • Size

    1.5MB

  • Sample

    240513-jwmbeage67

  • MD5

    3e7bc9f68da01204f7d842af72a572e6

  • SHA1

    6c8863a50bab869c0ce92a46332fed5f2d582a47

  • SHA256

    33124c09fd9907c0fac1b2cec0bc6b2d347a2ecd1af76cbc58a0c76a4d703c7d

  • SHA512

    3c71cf3b1cb51aa2a64826a2c183f7e1f74567ae13fd2ebfe5a8e1d0631e8f8ad40f23d7d6bfbd3a1e2783a7962329aa1a18add86a8e6a49840f242e6ce226b3

  • SSDEEP

    49152:oavLG9eu/7aHo+G6yHWMS1p2jyXapKQ3VwE:hz27+orH2MS1URpF32E

Score
10/10
xmrigantivmlinuxminerupx

Malware Config

Targets

    • Target

      .xxxz/h32

    • Size

      14KB

    • MD5

      0d01bd11d1d3e7676613aacb109de55f

    • SHA1

      317f1a5ac392476d32920eeba5d5d5539ea0be2b

    • SHA256

      45ed59d5b27d22567d91a65623d3b7f11726f55b497c383bc2d8d330e5e17161

    • SHA512

      433450c6c4fbf2a9ea7eda816f872283ef548e7c8b35c22c8250d0a2d06f9cda862d64f1de799d635c1541ef7e5650548a7a9a6d3b8e64667dcdb7c471271b58

    • SSDEEP

      192:fjU408Q7akapzlalhJYu4/c0B+4BIEQ1iZcXtCE7hwfn:fjo8QmDpp+MVZYti

    Score
    1/10
    behavioral1

    • Target

      .xxxz/h64

    • Size

      818KB

    • MD5

      c644c04bce21dacdeb1e6c14c081e359

    • SHA1

      59f5b21ef8a570c02453b5edb0e750a42a1382f6

    • SHA256

      7fe9d6d8b9390020862ca7dc9e69c1e2b676db5898e4bfad51d66250e9af3eaf

    • SHA512

      0748de2583e3fd33a19b1180875a9e3991b1d5ac403152b65c247a701cf00c70b3ee87e5518e8d9f5102317647a45ed60f7e139c40b88c5396b76aba7d82f076

    • SSDEEP

      12288:Vui9LWdJeS1cm27VCabT/BrVSr5oWOy7jaZH/QQwK54k2QPPVi97ATmsh1FjR8k:VumLWdJeS1cm27VtyXawuKQ3VwAiS1v

    Score
    1/10
    behavioral2

    • Target

      .xxxz/md

    • Size

      713KB

    • MD5

      5f507221b1a259751e76aa7f4276c3f5

    • SHA1

      0f5b70e88f0f42a061e6a8c4bc8c10b851a7fde7

    • SHA256

      ee7ba15bae03a8095e0bf432a2f2674f2e78085258f64c137d2ad22bd96815a7

    • SHA512

      5cd21f257152a91a45dd00bd5f80b2a61f454f940eab2c66d8d866a136a9725091a7a16452c5870a949d09f35902f6d32204cc70536e2c21cdd9452e8dffe878

    • SSDEEP

      12288:OK/8PZBb3Lr2XnYLW0lcIyme6fu7f9su7zz4LO4jDx9f7uj+c/j6/Cy0IoSI:OKafnlW0G96fu5su7aVto+G6yH

    Score
    10/10
    xmrigantivmminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner
    behavioral3

    • Target

      .xxxz/run

    • Size

      496B

    • MD5

      d60e43e3b4ce0b6a295ae9dfc0c51901

    • SHA1

      e183961d1b82e278c6177eaf46d52a9aeacb47d2

    • SHA256

      d0d885b1b6c5b9700bea8b19e3e5e086c2bf5061d3df2574da26e8b2f97e6f8f

    • SHA512

      f3d3131cb9cd7fb32628e5087fff72e7e11baba1d7d15867788c514ea4b53538f106ec6f0e7054818d5c05618dd0040ac52cd178da6e86def7b74488b278ee8d

    Score
    3/10
    behavioral4behavioral5behavioral6behavioral7

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Virtualization/Sandbox Evasion

1
T1497

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks